3 matches found
CVE-2003-1211
CVE-2003-1211 is an XSS vulnerability in MaxWebPortal 1.30 (and possibly earlier) affecting search.asp via the Search parameter. The issue allows remote attackers to inject arbitrary script/HTML. The provided documents do not specify a patch or workaround. No exploitation details are given in the...
CVE-2003-1212
MaxWebPortal 1.30 allows remote attackers to perform unauthorized actions by modifying hidden form fields, such as the 1 news, 2 lock, or 3 allmem fields in the 'start new topic' HTML page...
CVE-2003-1211
Cross-site scripting XSS vulnerability in search.asp for MaxWebPortal 1.30 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the Search parameter...