Vulnerabilities > CVE-2003-1136 - HTML Injection vulnerability in CHI Kien Uong CHI Kien Uong Guestbook 1.51
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Chi Kien Uong Guestbook 1.51 allows remote attackers to inject arbitrary web script or HTML via (1) HTML in a posted message or (2) Javascript in an onmouseover attribute in an e-mail address or URL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Chi Kien Uong Guestbook 1.51 Cross-Site Scripting Vulnerability. CVE-2003-1136. Webapps exploit for php platform |
| id | EDB-ID:23294 |
| last seen | 2016-02-02 |
| modified | 2003-10-27 |
| published | 2003-10-27 |
| reporter | Joshua P. Miller |
| source | https://www.exploit-db.com/download/23294/ |
| title | Chi Kien Uong Guestbook 1.51 - Cross-Site Scripting Vulnerability |
References
- http://secunia.com/advisories/10080
- http://securitytracker.com/id?1008006
- http://www.osvdb.org/2718
- http://www.securityfocus.com/archive/1/342475
- http://www.securityfocus.com/bid/8895
- http://www.securityfocus.com/bid/8896
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13522
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13523