Vulnerabilities > CVE-2002-0118 - Unspecified vulnerability in Infopop Ultimate Bulletin Board

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
infopop
exploit available
NVD
Published: 2002-03-25
Updated: 2008-11-04

Summary

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag.

Vulnerable Configurations

Part Description Count
Application
Infopop
9

Exploit-Db

descriptionUltimate Bulletin Board 5.4/6.0/6.2 Cross-Agent Scripting Vulnerability. CVE-2002-0118. Webapps exploit for cgi platform
idEDB-ID:21209
last seen2016-02-02
modified2002-01-09
published2002-01-09
reporterObscure
sourcehttps://www.exploit-db.com/download/21209/
titleUltimate Bulletin Board 5.4/6.0/6.2 - Cross-Agent Scripting Vulnerability

References