Home > Cross Site Scripting, Discussion Boards > Vanilla Forums FirstLastNames Plugin Profile Two Script Insertion Vulnerabilities

Vanilla Forums FirstLastNames Plugin Profile Two Script Insertion Vulnerabilities

May 30th, 2012

Application: Vanilla Forums
Affected Version: version 1.3.2 and other versions.
Vendor’s URL: FirstLastNames Plugin
Bug Type: Cross Site Scripting
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Cross Site Scripting, Discussion Boards

Comments are closed.