St@rExT

4 exploits Active since Nov 2005
CVE-2005-3412 EXPLOITDB html WORKING POC
Elite Forum 1.0.0.0 - Stored Cross-Site Scripting via Post Reply Image Tag
Cross-site scripting (XSS) vulnerability in Elite Forum 1.0.0.0 allows remote attackers to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: URL in an <img> tag.
EIP-2026-100414 EXPLOITDB text WRITEUP
MaviPortal - 'Arama.asp' Cross-Site Scripting
CVE-2006-6447 EXPLOITDB text WRITEUP
vt-forum_lite 1.3 and 1.5 - Cross-Site Scripting via StrMes Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Vt-Forum Lite 1.3 and 1.5 allow remote attackers to inject arbitrary web script or HTML via (1) the StrMes parameter in vf_info.asp and possibly (2) a URL in the SRC attribute of an IFRAME element that is submitted to vf_newtopic.asp.
CVE-2006-6447 EXPLOITDB text WRITEUP
vt-forum_lite 1.3 and 1.5 - Cross-Site Scripting via StrMes Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Vt-Forum Lite 1.3 and 1.5 allow remote attackers to inject arbitrary web script or HTML via (1) the StrMes parameter in vf_info.asp and possibly (2) a URL in the SRC attribute of an IFRAME element that is submitted to vf_newtopic.asp.