Family: CGI abuses : XSS --> Category: infos
Phorum Search Cross Site Scripting Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of an XSS bug in Phorum
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that suffers from a cross-
site scripting flaw.
The remote version of Phorum contains a script called 'search.php'
that is vulnerable to a cross-site scripting attack. A possible hacker may
be able to exploit this problem to steal the authentication
credentials of third-party users.
See also :
Upgrade to 5.0.7a.beta or later.
Low / CVSS Base Score : 2
Click HERE for more information and discussions on this network vulnerability scan.