Vulnerabilities > CVE-2002-2178 - Cross-Site Scripting vulnerability in PHPwebsite 0.8.3
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in article.php module for phpWebSite 0.8.3 allows remote attackers to execute arbitrary Javascript script via the sid parameter, as demonstrated using an IMG tag. This vulnerability affects phpWebsite version 0.8.3, and may affect all other versions of phpWebsite.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description PHPWebSite 0.8.3 Article.PHP Cross-Site Scripting Vulnerability. CVE-2002-2178. Webapps exploit for php platform id EDB-ID:21899 last seen 2016-02-02 modified 2002-10-02 published 2002-10-02 reporter Sp.IC source https://www.exploit-db.com/download/21899/ title PHPWebSite 0.8.3 Article.PHP Cross-Site Scripting Vulnerability description PHPWebSite 0.8.3 News Message HTML Injection Vulnerability. CVE-2002-2178. Webapps exploit for php platform id EDB-ID:21864 last seen 2016-02-02 modified 2002-09-25 published 2002-09-25 reporter [email protected] source https://www.exploit-db.com/download/21864/ title PHPWebSite 0.8.3 News Message HTML Injection Vulnerability