Vulnerabilities > CVE-2002-0535

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

postboard

postnuke-software-foundation

exploit available

NVD

Published: 2002-07-03

Updated: 2017-07-11

Summary

Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier allows remote attackers to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title.

Vulnerable Configurations

Part	Description	Count
Application	Postboard Postboard Postboard 2.0 Postboard Postboard 2.0.1	2
Application	Postnuke_Software_Foundation Postnuke Software Foundation Postnuke 0.64 Postnuke Software Foundation Postnuke 0.70 Postnuke Software Foundation Postnuke 0.71 Postnuke Software Foundation Postnuke 0.703	4

Exploit-Db

description	PostBoard 2.0 BBCode IMG Tag Script Injection Vulnerability. CVE-2002-0535. Webapps exploit for php platform
id	EDB-ID:21401
last seen	2016-02-02
modified	2002-04-19
published	2002-04-19
reporter	gcsb
source	https://www.exploit-db.com/download/21401/
title	PostBoard 2.0 BBCode IMG Tag Script Injection Vulnerability

description	PostBoard 2.0 Topic Title Script Execution Vulnerability. CVE-2002-0535. Webapps exploit for php platform
id	EDB-ID:21403
last seen	2016-02-02
modified	2002-04-19
published	2002-04-19
reporter	gcsb
source	https://www.exploit-db.com/download/21403/
title	PostBoard 2.0 Topic Title Script Execution Vulnerability

Vulnerabilities > CVE-2002-0535 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2002-0535"}]}

Summary

Vulnerable Configurations

Exploit-Db

References

Vulnerabilities > CVE-2002-0535