3 matches found
CVE-2023-0549
A vulnerability, which was classified as problematic, has been found in YAFNET up to 3.1.10. This issue affects some unknown processing of the file /forum/PostPrivateMessage of the component Private Message Handler. The manipulation of the argument subject/message leads to cross site scripting. T...
CVE-2023-0549 YAFNET Private Message PostPrivateMessage cross site scripting
A vulnerability, which was classified as problematic, has been found in YAFNET up to 3.1.10. This issue affects some unknown processing of the file /forum/PostPrivateMessage of the component Private Message Handler. The manipulation of the argument subject/message leads to cross site scripting. T...
CVE-2023-0549
The CVE-2023-0549 issue affects YAFNET up to version 3.1.10 in the Private Message Handler’s /forum/PostPrivateMessage processing. The root cause is manipulation of the subject and message parameters, leading to cross-site scripting. The vulnerability can be triggered remotely; the exploit has be...