CVE-2004-2241

Vulnerability

A cross-site scripting (XSS) vulnerability exists in Phorum versions 5.0.11 and earlier. The flaw resides in the search.php script, which fails to properly sanitize user-supplied input before reflecting it in the page output. This allows an attacker to inject arbitrary HTML or JavaScript code. The vendor's patch confirms the affected file is search.php, contrary to some reports that incorrectly identified read.php [2].

Exploitation

An attacker can exploit this vulnerability by crafting a malicious URL containing the XSS payload in a parameter processed by search.php. No authentication is required; the victim need only visit the crafted link while logged into the forum. The injected script executes in the context of the victim's session, enabling the attacker to perform actions on behalf of the victim.

Impact

Successful exploitation allows the attacker to execute arbitrary HTML or JavaScript in the victim's browser. This can lead to session hijacking, cookie theft, defacement of the forum interface, or redirection to malicious sites. The attack compromises the confidentiality and integrity of the victim's interaction with the Phorum application.

Mitigation

The vendor addressed this vulnerability in a subsequent release. Users should upgrade to Phorum 5.0.12 or later, which includes the fix for the XSS issue in search.php [1]. No workarounds are documented in the available references. If upgrading is not immediately possible, administrators should consider disabling the search functionality or applying input validation filters as a temporary measure.