VULHUB ™

PHP Prayer Board has been reported prone to a cross-site scripting vulnerability. The issue presents itself due to a lack of sufficient sanitization performed by functions in PHP Prayer Board scripts on user-influenced form data and URI parameters. It has been reported that a remote attacker may construct a malicious link to the vulnerable script and supply arbitrary HTML code as URI parameters. If this link is followed, malicious HTML code will be rendered in the browser of the user who followed the link. This could permit the theft of cookie authentication credentials; other attacks may also be possible.

PHP Prayer Board has been reported prone to a cross-site scripting vulnerability. The issue presents itself due to a lack of sufficient sanitization performed by functions in PHP Prayer Board scripts on user-influenced form data and URI parameters. It has been reported that a remote attacker may construct a malicious link to the vulnerable script and supply arbitrary HTML code as URI parameters. If this link is followed, malicious HTML code will be rendered in the browser of the user who followed the link. This could permit the theft of cookie authentication credentials; other attacks may also be possible.