Full title: PHPFox v3.4.1 XSS vulnerabilities 
Category: web applications
Platform: php
Malicious users may inject JavaScript, VBScript, ActiveX, HTML or Flash into a vulnerable application to fool a user 
in order to gather data from them. An attacker can steal the session cookie and take over the account, impersonating 
the user. It is also possible to modify the content of the page presented to the user

# 0day.today @ http://0day.today/