Cross-site scripting (XSS) vulnerability in phpGB before 1.20 allows remote attackers to inject arbitrary HTML or script into guestbook pages, which is executed when the administrator deletes the entry.
| CVE ID | Name | Status | References |
|---|---|---|---|
| CVE-2002-1480 | Cross-site scripting (XSS) vulnerability in phpGB before 1.20 allows remote attackers to inject arbitrary HTML or script into guestbook pages, which is executed when the administrator deletes the entry. |
Proposed (20030317) | BID:5676 | URL:http://www.securityfocus.com/bid/5676 | BUGTRAQ:20020909 phpGB: cross site scripting bug | URL:http://archives.neohapsis.com/archives/bugtraq/2002-09/0069.html | XF:phpgb-entry-deletion-xss(10060) | URL:http://www.iss.net/security_center/static/10060.php |
Page created: