Unrated severityNVD Advisory· Published Oct 11, 2021· Updated Aug 4, 2024
CVE-2021-40541
CVE-2021-40541
Description
PHPFusion 9.03.110 is affected by cross-site scripting (XSS) in the preg patterns filter html tag without "//" in descript() function An authenticated user can trigger XSS by appending "//" in the end of text.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PHPFusion/PHPFusiondescription
- Range: = 9.03.110
Patches
Vulnerability mechanics
References
1- github.com/PHPFusion/PHPFusion/issues/2373mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.