Cross-site scripting (XSS) vulnerability in show.php in GL-SH Deaf Forum 6.4.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the sort parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Deaf_forum |
Gl-sh |
6.4.3 (including) |
6.4.3 (including) |
References