2 matches found
CVE-2009-3202
CVE-2009-3202 describes a cross-site scripting (XSS) vulnerability in the search.php component of ULoKI PHP Forum 2.1. The issue allows remote attackers to inject arbitrary web script or HTML via the term parameter, potentially affecting users who interact with search results. The available detai...
UloKI PHP Forum 2.1 - search.php Cross-Site Scripting
UloKI PHP Forum 2.1 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/44273/info UloKI PHP Forum is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...