Test ID:	1.3.6.1.4.1.25623.1.0.51953
Category:	CGI abuses : XSS
Title:	PHP-Fusion Setuser.PHP HTML Injection
Summary:	NOSUMMARY
Description:	Description: The remote host is running PHP-Fusion, which according to its version number, is vulnerable to a cross-site scripting attack via the 'setuser.php' script. Versions up to 5.01 are vulnerable. Solution : Upgrade to version 5.02 or newer Risk factor : Medium CVSS Score: 4.3
Cross-Ref:	BugTraq ID: 12853 Common Vulnerability Exposure (CVE) ID: CVE-2005-0829 Bugtraq: 20050319 Fw: [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection Vulnerability (Google Search) http://marc.info/?l=bugtraq&m=111142752220155&w=2 Bugtraq: 20050319 Re: [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection (Google Search) http://marc.info/?l=bugtraq&m=111142918711745&w=2 Bugtraq: 20050319 [PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection (Google Search) http://marc.info/?l=bugtraq&m=111125692513645&w=2
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.