Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum 1.01b and previous versions allows remote malicious users to inject arbitrary web script or HTML via the fromaction parameter in a log action, a different vector than CVE-2007-3235.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fuzzylime forum fuzzylime forum |