[] NeoSense
E X P L O I T S
title author type platform port cve id

Phorum 5.0.7 - Search Script Cross-Site Scripting

Author: vampz
type: webapps
platform: php
port: 
date_added: 2004-07-28 
date_updated: 2013-01-24 
verified: 1 
codes: CVE-2004-2242;OSVDB-38022 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/10822/info

A cross-site scripting vulnerability is reported to affect Phorum. This issue affects the 'search.php' script. As a result of this vulnerability, it is possible for a remote attacker to create a malicious link containing script code that will be executed in the browser of a legitimate user.

This vulnerability was reported to affect Phorum 5.0.7 beta.

http://www.example.com/phorum5/search.php?12,search=vamp,page=1,match_type=ALL,
match_dates=00,match_forum=ALL ,body=,author=,subject= [ Evil Code Here ]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.