CVE-2002-0413

Rebb - XSS

Title source: rule

Description

Cross-site scripting vulnerability in ReBB allows remote attackers to execute arbitrary Javascript and steal cookies via an IMG tag whose URL includes the malicious script.

Exploits (1)

exploitdb WRITEUP VERIFIED

by skizzik · textwebappsphp

https://www.exploit-db.com/exploits/21312

View Code ZIP pw:eip

References (3)

Core 3

Core References

Vendor Advisory mailing-list x_refsource_bugtraq

http://online.securityfocus.com/archive/1/259464

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/4220

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/8353.php

Scores

EPSS 0.0306

EPSS Percentile 86.8%

Details

Status published

Products (1)

rebb/rebb 1.0

Published Aug 12, 2002

Tracked Since Feb 18, 2026