php-fusion php-fusion 9.03.60 vulnerabilities and exploits

(subscribe to this query)

5.4

CVSSv3

A reflected cross site scripting (XSS) vulnerability in /administration/theme.php of PHP-Fusion 9.03.60 allows authenticated malicious users to execute arbitrary web scripts or HTML via a crafted payload entered into the "Manage Theme" field.

Php-fusion Php-fusion 9.03.60

4.8

CVSSv3

Cross Site Scripting (XSS) vulnerability in PHP-Fusion 9.03.60 via 'New Shout' in /infusions/shoutbox_panel/shoutbox_admin.php.

Php-fusion Php-fusion 9.03.60

4.8

CVSSv3

PHP-Fusion 9.03.60 allows XSS via the administration/site_links.php Add Site Link field.

Php-fusion Php-fusion 9.03.60

5.4

CVSSv3

The component /php-fusion/infusions/shoutbox_panel/shoutbox_archive.php in PHP-Fusion 9.03.60 allows malicious users to redirect victim users to malicious websites via a crafted payload entered into the Shoutbox message panel.

Php-fusion Php-fusion 9.03.60

5.4

CVSSv3

A stored cross site scripting (XSS) vulnerability in /administration/settings_registration.php of PHP-Fusion 9.03.60 allows authenticated malicious users to execute arbitrary web scripts or HTML via a crafted payload entered into the "Registration" field.

Php-fusion Php-fusion 9.03.60

5.4

CVSSv3

A stored cross site scripting (XSS) vulnerability in /administration/setting_security.php of PHP-Fusion 9.03.60 allows authenticated malicious users to execute arbitrary web scripts or HTML via a crafted payload.

Php-fusion Php-fusion 9.03.60

5.4

CVSSv3

PHP-Fusion 9.03.60 is affected by Cross Site Scripting (XSS) via infusions/member_poll_panel/poll_admin.php.

Php-fusion Php-fusion 9.03.60

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook