CVE-2002-2231
Ikonboard - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) a javascript: URL in a photo URL or (2) an X-Forwarded-For: header.
References (5)
Scores
EPSS
0.0035
EPSS Percentile
57.2%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
ikonboard/ikonboard
Timeline
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026