icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Phorum < 3.4.3 Message Post XSS

Medium

Synopsis

The remote host is running a vulnerable version of Phorum.

Description

A cross-site scripting (XSS) vulnerability in Phorum before 3.4.3 allows remote attackers to inject arbitrary web scripting and HTML.

Solution

Upgrade to version 3.4.3 or higher.