Multiple cross-site scripting (XSS) vulnerabilities in forum.php3 in Arnaud Guyonne (aka Arnotic) a-forum allow remote attackers to inject arbitrary web script or HTML via the (1) Sujet or (2) Pseudo field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 77.5%