PHP-Fusion < 6.00.205 HTML Injection
High Nessus Network Monitor Plugin ID 3267
SynopsisThe remote host is vulnerable to several injection attacks.
DescriptionAccording to its version number, the remote host is running a version of PHP-Fusion that suffers from an HTML Injection flaw. An attacker exploiting these flaws would be able to inject code that would be executed either by the target web server or by unsuspecting users browsing the website. In addition, this version of PHP-Fusion may be vulnerable to a SQL injection attack.
SolutionUpgrade to version 6.00.205 or higher.