A stored cross site scripting (XSS) vulnerability in the 'Smileys' feature of Codoforum v5.0.2 allows authenticated malicious users to execute arbitrary web scripts or HTML via crafted payload entered into the 'Smiley Code' parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codologic codoforum 5.0.2 |