CVE-2002-0475

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/08/2002
Last modified:
20/11/2024

Description

Cross-site scripting vulnerability in phpBB 1.4.4 and earlier allows remote attackers to execute arbitrary Javascript on web clients by embedding the script within an IMG image tag while editing a message.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:phpbb_group:phpbb:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:1.4.4:*:*:*:*:*:*:*