2 matches found
CVE-2002-0959
The CVE-2002-0959 entry refers to a Cross-site scripting vulnerability in Splatt Forum 3.0. The issue allows remote attackers to execute arbitrary script as other users by abusing an tag with a closing quote followed by malicious script. According to the NVD entry, the vulnerability has a base s...
CVE-2003-0590
The CVE-2003-0590 entry describes a Cross-site scripting (XSS) vulnerability in Splatt Forum, where remote attackers can inject arbitrary HTML/JavaScript via the post icon (image_subject) field. Affected software is Splatt Forum; the vulnerability is triggered by user-supplied input in the image_...