Cross-site scripting (XSS) vulnerability in include.php in PHPKIT 1.6.02 and 1.6.03 allows remote attackers to inject arbitrary web script or HTML via the contact_email parameter.
References
Link | Resource |
---|---|
http://badwebmasters.net/advisory/017/ | Exploit Vendor Advisory URL Repurposed |
http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013139.html | Vendor Advisory |
http://www.securityfocus.com/bid/8960 | Exploit |
https://exchange.xforce.ibmcloud.com/vulnerabilities/13590 |
Configurations
Configuration 1 (hide)
|
History
14 Feb 2024, 01:17
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://badwebmasters.net/advisory/017/ - Exploit, Vendor Advisory, URL Repurposed |
Information
Published : 2003-11-02 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2003-1187
Mitre link : CVE-2003-1187
CVE.ORG link : CVE-2003-1187
JSON object : View
Products Affected
phpkit
- phpkit
CWE