CVE-2010-0938
Todoo Forum 2.0 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in todooforum.php in Todoo Forum 2.0 allows remote attackers to inject arbitrary web script or HTML via the id_forum parameter in a post action.
References (4)
Scores
EPSS
0.0029
EPSS Percentile
51.6%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
todoomasters/todoo_forum
n/a/n/a
Timeline
Published
Mar 08, 2010
Tracked Since
Feb 18, 2026