Cross-site scripting (XSS) vulnerability in GoSmart Message Board allows remote attackers to execute inject web script or HTML via the (1) Category parameter to Forum.asp or (2) MainMessageID parameter to ReplyToQuestion.asp.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 66.0%