5 matches found
CVE-2012-4234
Cross-site scripting XSS vulnerability in the group moderation screen in the control center control.php in Phorum before 5.2.19 allows remote attackers to inject arbitrary web script or HTML via the group parameter...
CVE-2012-4234
CVE-2012-4234 is an XSS vulnerability in Phorum prior to 5.2.19, exploitable via the group parameter in control.php. The root cause is insufficient sanitization of the group input, allowing arbitrary HTML/JavaScript to be returned to users. Public advisories (HTB23109) confirm the issue and indic...
Cross-Site Scripting (XSS) in Phorum
Advisory ID: HTB23109 Product: Phorum Vendor: Phorum Team Vulnerable Versions: 5.2.18 and probably prior Tested Version: 5.2.18 Vendor Notification: August 8, 2012 Public Disclosure: August 29, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4234 CVSSv2 Base Score: 4....
Phorum 5.2.18 Cross Site Scripting
Exploit for php platform in category web applications Product: Phorum Vendor: Phorum Team Vulnerable Versions: 5.2.18 and probably prior Tested Version: 5.2.18 Vendor Notification: August 8, 2012 Public Disclosure: August 29, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference:...
Phorum 5.2.18 Cross Site Scripting
Advisory ID: HTB23109 Product: Phorum Vendor: Phorum Team Vulnerable Versions: 5.2.18 and probably prior Tested Version: 5.2.18 Vendor Notification: August 8, 2012 Public Disclosure: August 29, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4234 CVSSv2 Base Score: 4....