Cross-Site Scripting (XSS) in Phorum

Advisory ID: HTB23109 Product: Phorum Vendor: Phorum Team Vulnerable Versions: 5.2.18 and probably prior Tested Version: 5.2.18 Vendor Notification: August 8, 2012 Public Disclosure: August 29, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4234 CVSSv2 Base Score: 4....

Phorum 5.2.18 Cross Site Scripting

Advisory ID: HTB23109 Product: Phorum Vendor: Phorum Team Vulnerable Versions: 5.2.18 and probably prior Tested Version: 5.2.18 Vendor Notification: August 8, 2012 Public Disclosure: August 29, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4234 CVSSv2 Base Score: 4....