Fudforum: >> Fudforum >> 3.1.0 Security Vulnerabilities
FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File Administration System in Admin Control Panel.
CVSS Score
7.2
EPSS Score
0.112
Published
2022-06-06
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "srch" parameter.
CVSS Score
6.1
EPSS Score
0.038
Published
2021-03-19
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "author" parameter.
CVSS Score
6.1
EPSS Score
0.011
Published
2021-03-19