OpenForum Multiple Cross-Site Injection Vulnerabilities

OpenForum Multiple Cross-Site Injection Vulnerabilities

OpenForum is prone to multiple cross-site scripting vulnerability because the application fails to sanitize user input.

Attacker-supplied HTML and script code would execute in the context of the affected website, potentially allowing an attacker to steal cookie-based authentication credentials. Other attacks are also possible.

These issues affect version 1.2 beta; other versions may also be vulnerable.