CVE-2023-3539

Name of the Vulnerable Software and Affected Versions SimplePHPscripts Simple Forum PHP version 2.7

Description A problematic issue has been found in the processing of the file /preview.php of the component URL Parameter Handler, leading to cross site scripting. The attack may be initiated remotely.

Recommendations For version 2.7, consider disabling the /preview.php file or restricting access to it until a patch is available. As a temporary workaround, avoid using the URL Parameter Handler component to minimize the risk of exploitation.