Cross-site scripting (XSS) vulnerability in the group moderation screen in the control center (control.php) in Phorum before 5.2.19 allows remote attackers to inject arbitrary web script or HTML via the group parameter.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 02:11
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2014-09-04 14:55
Updated : 2024-02-28 12:20
NVD link : CVE-2012-4234
Mitre link : CVE-2012-4234
CVE.ORG link : CVE-2012-4234
JSON object : View
Products Affected
phorum
- phorum
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')