5.8

CVE-2003-1238

Exploit
Cross-site scripting vulnerability (XSS) in Nuked-Klan 1.3 beta and earlier allows remote attackers to steal authentication information via cookies by injecting arbitrary HTML or script into op of the (1) Team, (2) News, and (3) Liens modules.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Nuked-klanNuked-klan Version1.2
Nuked-klanNuked-klan Version1.2_beta
Nuked-klanNuked-klan Version1.3
Nuked-klanNuked-klan Version1.3_beta
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.09% 0.792
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.8 8.6 4.9
AV:N/AC:M/Au:N/C:P/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.neohapsis.com/archives/bugtraq/2003-03/0275.html
Exploit
http://archives.neohapsis.com/archives/bugtraq/2003-02/0276.html
Exploit
http://www.iss.net/security_center/static/11420.php
http://www.securityfocus.com/bid/6916
Exploit