1.6.03

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

phpkit

exploit available

NVD

Published: 2003-11-02

Updated: 2024-02-14

Summary

Cross-site scripting (XSS) vulnerability in include.php in PHPKIT 1.6.02 and 1.6.03 allows remote attackers to inject arbitrary web script or HTML via the contact_email parameter.

Vulnerable Configurations

Part	Description	Count
Application	Phpkit Phpkit Phpkit 1.6.02 Phpkit Phpkit 1.6.03	2

Exploit-Db

description	PHPKit 1.6 Include.PHP Cross-Site Scripting Vulnerability. CVE-2003-1187. Webapps exploit for php platform
id	EDB-ID:23333
last seen	2016-02-02
modified	2003-11-02
published	2003-11-02
reporter	[email protected]
source	https://www.exploit-db.com/download/23333/
title	PHPKit 1.6 Include.PHP Cross-Site Scripting Vulnerability

References

http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013139.html
http://badwebmasters.net/advisory/017/
http://www.securityfocus.com/bid/8960
https://exchange.xforce.ibmcloud.com/vulnerabilities/13590