7.5
CVSSv2

CVE-2002-0316

Published: 25/06/2002 Updated: 29/04/2021
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Cross-site scripting vulnerability in eXtreme message board (XMB) 1.6x and previous versions allows remote malicious users to execute script as other XMB users by inserting the script into an IMG tag.

Vulnerable Product Search on Vulmon Subscribe to Product

xmb software xmb forum 1.6 pre-beta

Exploits

source: wwwsecurityfocuscom/bid/4167/info The Extreme Message Board (XMB) 16 Magic Lantern pre-beta version reportedly allows JavaScript and HTML to be entered in messages This can be achieved by entering script or HTML between [img] and [/img] tags in a forum message This has been fixed in the 16 Magic Lantern final beta version of ...