Cross-site scripting (XSS) vulnerability in index.php for Zorum 3.4 and 3.5 allows remote attackers to inject arbitrary web script or HTML via the method parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Zorum | Phpoutsourcing | 3.3 | 3.3 |
Zorum | Phpoutsourcing | 3.5 | 3.5 |
Zorum | Phpoutsourcing | 3.4 | 3.4 |
Zorum | Phpoutsourcing | 3.2 | 3.2 |
Zorum | Phpoutsourcing | 3.0 | 3.0 |
Zorum | Phpoutsourcing | 3.1 | 3.1 |