Cross-site scripting (XSS) vulnerability in Phorum before 5.2.15 allows remote attackers to inject arbitrary web script or HTML via an invalid email address.Referenceshttp://www.openwall.com/lists/oss-security/2010/05/18/11http://www.openwall.com/lists/oss-security/2010/05/16/2http://www.facebook.com/note.php?note_id=371190874581http://osvdb.org/64759
