Meangcz

Name of the Vulnerable Software and Affected Versions: PHPFusion version 9.03.110 Description: The issue concerns a combination of CSRF and Cross-site scripting (XSS) vulnerability in the search.php file. This allows remote attackers to inject arbitrary web script or HTML, potentially leading to unauthorized actions or data exposure. Recommendations: For PHPFusion version 9.03.110, consider updating to a newer version that addresses this issue, or as a temporary workaround, restrict access to the search.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.