exploitDog

CVE-2003-1278

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting vulnerability (XSS) in OpenTopic 2.3.1 allows remote attackers to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into IMG tags.

Ссылки

http://www.iss.net/security_center/static/10985.php
http://www.securityfocus.com/archive/1/305232
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/6523
Exploit
http://www.iss.net/security_center/static/10985.php
http://www.securityfocus.com/archive/1/305232
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/6523
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:infopop:opentopic:2.3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00725

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mpjm-f737-j9fp

github

почти 4 года назад

Cross-site scripting vulnerability (XSS) in OpenTopic 2.3.1 allows remote attackers to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into IMG tags.

EPSS

Процентиль: 72%

0.00725

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other