Description
Cross-site scripting (XSS) vulnerability in mvnForum 1.0 RC4 allows remote attackers to inject arbitrary web script or HTML via the Search parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by hoang yen · textwebappsphp
https://www.exploit-db.com/exploits/25438
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20613
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/13213
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/15760
Scores
EPSS
0.0040
EPSS Percentile
60.9%
Details
Status
published
Products (1)
mvnforum/mvnforum
1.0_rc4
Published
May 02, 2005
Tracked Since
Feb 18, 2026