VULHUB ™

Forumwa is reportedly affected by multiple remote input validation vulnerabilities. These issues are due to the application failing to properly sanitize user-supplied input. The application is vulnerable to a cross-site scripting attack permitting an attacker to construct a malicious link containing script code to be executed in the context of the affected site. This may facilitate the theft of cookie-based authentication credentials as well as other attacks. The application is vulnerable to a HTML injection attack. Attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user, other attacks are also possible.

Forumwa is reportedly affected by multiple remote input validation vulnerabilities. These issues are due to the application failing to properly sanitize user-supplied input. The application is vulnerable to a cross-site scripting attack permitting an attacker to construct a malicious link containing script code to be executed in the context of the affected site. This may facilitate the theft of cookie-based authentication credentials as well as other attacks. The application is vulnerable to a HTML injection attack. Attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user, other attacks are also possible.