Total vulnerabilities in the database
Multiple cross-site scripting (XSS) vulnerabilities in Phorum 3.1 through 5.0.3 beta allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_REFERER parameter to login.php, (2) HTTP_REFERER parameter to register.php, or (3) target parameter to profile.php.
Software | From | Fixed in |
---|---|---|
phorum / phorum | 3.2.2 | 3.2.2.x |
phorum / phorum | 3.1.1_pre | 3.1.1_pre.x |
phorum / phorum | 3.4.6 | 3.4.6.x |
phorum / phorum | 3.2.3 | 3.2.3.x |
phorum / phorum | 3.2.7 | 3.2.7.x |
phorum / phorum | 3.4.3 | 3.4.3.x |
phorum / phorum | 3.1.1 | 3.1.1.x |
phorum / phorum | 3.2.8 | 3.2.8.x |
phorum / phorum | 3.3.1a | 3.3.1a.x |
phorum / phorum | 3.4.4 | 3.4.4.x |
phorum / phorum | 3.3.1 | 3.3.1.x |
phorum / phorum | 3.4 | 3.4.x |
phorum / phorum | 3.3.2 | 3.3.2.x |
phorum / phorum | 3.1.1_rc2 | 3.1.1_rc2.x |
phorum / phorum | 3.1.1a | 3.1.1a.x |
phorum / phorum | 3.4.5 | 3.4.5.x |
phorum / phorum | 3.2.5 | 3.2.5.x |
phorum / phorum | 3.2.3a | 3.2.3a.x |
phorum / phorum | 3.2 | 3.2.x |
phorum / phorum | 3.1.2 | 3.1.2.x |
phorum / phorum | 3.1 | 3.1.x |
phorum / phorum | 3.4.2 | 3.4.2.x |
phorum / phorum | 3.4.1 | 3.4.1.x |
phorum / phorum | 5.0.3_beta | 5.0.3_beta.x |
phorum / phorum | 3.2.4 | 3.2.4.x |
phorum / phorum | 3.2.3b | 3.2.3b.x |
phorum / phorum | 3.3.2b3 | 3.3.2b3.x |
phorum / phorum | 3.3.2a | 3.3.2a.x |
phorum / phorum | 3.2.6 | 3.2.6.x |