Discuz! DiscuzX cross-site scripting vulnerability

Discuz! DiscuzX is an online forum system. A cross-site scripting vulnerability exists in Discuz! DiscuzX X3.4. A remote attacker can exploit this vulnerability by sending the 'view' parameter to the include/space/spacepoll.php file to inject arbitrary Web script or HTML...

CVE-2018-5331

Discuz! DiscuzX X3.4 has XSS via the view parameter to include/space/spacepoll.php, as demonstrated by a mod=space do=poll request to home.php...