VULHUB ™

Phorum is a PHP based web forums package. It has been reported possible to inject script code into the body of a message response. The attacker's script code may be executed in the web client of arbitrary users who view the malicious post. Attackers may potentially exploit this issue to hijack web content or to steal cookie-based authentication credentials.

Phorum is a PHP based web forums package. It has been reported possible to inject script code into the body of a message response. The attacker's script code may be executed in the web client of arbitrary users who view the malicious post. Attackers may potentially exploit this issue to hijack web content or to steal cookie-based authentication credentials.