This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
The remote web server contains a PHP script that suffers from a cross-
site scripting flaw.
The remote version of Phorum contains a script called 'search.php'
that is vulnerable to a cross-site scripting attack. An attacker may
be able to exploit this problem to steal the authentication
credentials of third-party users.
See also :
Upgrade to 5.0.7a.beta or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 4.3
Public Exploit Available : true