EIP-2026-110609

PRE-CVE

Phorum < 5.0.3 Beta - Cross Site Scripting

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110609. PoCs published by GulfTech Security.

AI-analyzed exploit summary The writeup describes multiple XSS vulnerabilities in Phorum <= 5.0.3 Beta, specifically in login.php, register.php, and profile.php, where user-controlled input from HTTP_REFERER or target parameters is reflected without proper sanitization. The author provides technical details on the vulnerable parameters and their exploitation vectors.

Description

Phorum < 5.0.3 Beta - Cross Site Scripting

Exploits (1)

exploitdb WRITEUP

by GulfTech Security · textwebappsphp

https://www.exploit-db.com/exploits/43802

View Code ZIP pw:eip

The writeup describes multiple XSS vulnerabilities in Phorum <= 5.0.3 Beta, specifically in login.php, register.php, and profile.php, where user-controlled input from HTTP_REFERER or target parameters is reflected without proper sanitization. The author provides technical details on the vulnerable parameters and their exploitation vectors.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Phorum <= 5.0.3 Beta

No auth needed

Prerequisites: Access to vulnerable Phorum instance · Ability to craft malicious URLs with XSS payloads

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026