PT-2023-27965 · Phpjabbers · Phpjabbers Php Forum Script
Published
2023-08-30
·
Updated
2024-07-23
·
CVE-2023-41538
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
phpjabbers PHP Forum Script version 3.0
Description
The issue concerns a Cross Site Scripting (XSS) flaw via the
keyword parameter. This allows for potential malicious script injection, affecting the security of the application.Recommendations
For phpjabbers PHP Forum Script version 3.0, consider restricting or sanitizing input for the
keyword parameter to prevent XSS attacks until a proper fix is available.Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Phpjabbers Php Forum Script