Online Discussion Forum Project CVE

Filtered by vendor Online Discussion Forum Project Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-28141	1 Online Discussion Forum Project	1 Online Discussion Forum	2021-04-23	3.5 LOW	5.4 MEDIUM
The messaging subsystem in the Online Discussion Forum 1.0 is vulnerable to XSS in the message body. An authenticated user can send messages to arbitrary users on the system that include javascript that will execute when viewing the messages page.

Vulnerabilities (CVE)