top of page
Sentence 7
A reflected cross site scripting (XSS) vulnerability in /administration/theme.php of PHP-Fusion 9.03.60 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "Manage Theme" field.
Actual
Tags:
-
Exploit mechanism: cross site scripting (XSS)
-
Exploit objective: execute arbitrary web scripts or HTML
-
Attack pathway: crafted payload
Predicted
Tags:
-
Exploit mechanism: reflected cross site scripting (XSS)
-
Exploit objective: execute arbitrary web scripts or HTML
-
Attack pathway: authenticated attackers
bottom of page