Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4561

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-4561
Last Modified 19 Dec 2011 02:05:18
Published 28 Nov 2011 04:55:08
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-4561

Summary

Cross-site scripting (XSS) vulnerability in admin.php in Phorum 5.2.18 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Phorum 5.2.18


References

BID - 49920

BUGTRAQ - 20111003 Phorum 5.2.18 Cross-site scripting vulnerability

MISC - http://www.rul3z.de/advisories/SSCHADV2011-023.txt

SECUNIA - 46282

OSVDB - 76026


Last Updated: 27 May 2016 10:57:49