Cross Site Scripting (XSS) vulnerability in PHP-Fusion 9.03.60 via ‘New Shout’ in /infusions/shoutbox_panel/shoutbox_admin.php.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23702
Reference (s):
- https://github.com/phpfusion/PHPFusion/issues/2328
- https://user-images.githubusercontent.com/62001260/82175522-47169980-98fe-11ea-9a8e-93622aab7cf4.PNG