PT-2003-1572 · Xmb Forum · Xmb

Marc Ruef

Published

2003-06-06

Updated

2021-04-29

CVE-2003-0375

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: XMBforum XMB versions 1.8.x

Description: A cross-site scripting issue allows remote attackers to insert arbitrary HTML and web script via the member parameter in the member.php file.

Recommendations: For versions 1.8.x, update the member.php file to properly sanitize the member parameter to prevent the insertion of arbitrary HTML and web script.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0375

Affected Products

Xmb

PT-2003-1572 · Xmb Forum · Xmb

CVE-2003-0375

Related Identifiers

Affected Products

References · 7