Jforum2 · Jforum2 · CVE-2021-40509
**Name of the Vulnerable Software and Affected Versions**
JForum2 version 2.7.0
**Description**
The issue allows for XSS via a user signature, specifically in the ViewCommon.java file.
**Recommendations**
For JForum2 version 2.7.0, update the ViewCommon.java file to properly sanitize user input in signatures to prevent XSS attacks.