CVE-2009-1607

Name of the Vulnerable Software and Affected Versions: phpForm.net LinkBase version 2.0

Description: A cross-site scripting (XSS) issue exists in the administrator panel, allowing remote attackers to inject arbitrary web script or HTML via the username in a registration. This occurs because the input is not properly handled when the administrator accesses the Users menu.

Recommendations: For phpForm.net LinkBase version 2.0, as a temporary workaround, consider validating and sanitizing the username input to prevent XSS attacks. Restrict access to the administrator panel and the Users menu to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.