CVE-2003-0278
Happycgi.com Happymall 4.3 and 4.4 - Cross-Site Scripting via File Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2003-0278. PoCs published by Julio Cesar.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in Happymall E-Commerce due to insufficient sanitization of user-supplied URI parameters. The PoC shows how arbitrary script code can be executed in the browser of a legitimate user.
Description
Cross-site scripting (XSS) vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to insert arbitrary web script via the file parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Happymall E-Commerce due to insufficient sanitization of user-supplied URI parameters. The PoC shows how arbitrary script code can be executed in the browser of a legitimate user.