Vulnerabilities > PHP Fusion > PHP Fusion > 5.01.service.pack
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-09-02 | CVE-2005-2783 | Unspecified vulnerability in PHP Fusion PHP Fusion Cross-site scripting (XSS) vulnerability in PHP-Fusion 6.00.107 and earlier allows remote attackers to inject arbitrary web script or HTML via nested, malformed URL BBCode tags. network php-fusion | 4.3 |
| 2005-07-27 | CVE-2005-2401 | Unspecified vulnerability in PHP Fusion PHP Fusion PHP-Fusion allows remote attackers to inject arbitrary Cascading Style Sheets (CSS) via the BBCode color tag. | 5.0 |