CVE-2009-0488

Phorum <5.2.10 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in Phorum before 5.2.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (2)

[Various Sources] http://www.phorum.org/phorum5/read.php?64%2C136129

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/33657

Scores

EPSS 0.0022

EPSS Percentile 45.0%

Classification

CWE

CWE-79

Status published

Affected Products (50)

phorum/phorum

phorum/phorum < 5.2.10

phorum/phorum

... and 35 more

Timeline

Published Feb 09, 2009

Tracked Since Feb 18, 2026