Published on 2006-11-01 04:38:01

Vigilon has reported a vulnerability in phpFaber CMS, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the URL in cms_images/js/htmlarea/htmlarea.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is reported in version 1.3.36. Other versions may also be affected. The vendor has reportedly issued a fixed version.

Development of content management system may become a new stage in the life of your website. phpFaber CMS is a convenient and useful tool for managing content of your site. With the help of CMS you will create your site in no time and you will be able to make all necessary modifications immediately, as well as to keep data exact and corrected no matter where you are: at home, at your workplace or having rest.

• WYMeditor, The Standard Compliant Visual WYSIWYM Editor
• Welcome to CMS Magazine
• TinyMCE 3.0 final Released
• Joomla And SMF, The Perfect Couple

• Advertise on our mobile site!
• [Contact us]

Member of the PHP Magazine Network, Copyright (C) 2005-2009 phpmagazine.net All Rights Reserved