CVE-2022-31913

Name of the Vulnerable Software and Affected Versions Online Discussion Forum Site version 1.0

Description The issue is related to Cross Site Scripting (XSS) via the "/odfs/classes/Master.php?f=save category" API endpoint, specifically affecting the name variable. This allows for potential malicious script execution.

Recommendations For Online Discussion Forum Site version 1.0, consider disabling the save category function in the Master.php file until a patch is available to prevent exploitation via the "/odfs/classes/Master.php?f=save category" endpoint. Restrict access to this endpoint to minimize the risk of XSS attacks. Avoid using the name variable in this endpoint until the issue is resolved.