Cross-site scripting (XSS) vulnerability in setuser.php of the Digitanium addon to PHP-Fusion 5.01 allows remote attackers to inject arbitrary web script or HTML via the (1) user_name or (2) user_pass parameters.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Php_fusion | Php_fusion | 5.01 (including) | 5.01 (including) |