Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum 1.01b and earlier allows remote attackers to inject arbitrary web script or HTML via the fromaction parameter in a log action, a different vector than CVE-2007-3235.
CPE | Name | Operator | Version |
---|---|---|---|
fuzzylime_forum | eq | <= 1.1b |