CVE-2003-0295

vBulletin 3.0.0 Beta 2 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in private.php for vBulletin 3.0.0 Beta 2 allows remote attackers to inject arbitrary web script and HTML via the "Preview Message" capability.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ferruh Mavituna · htmlwebappsphp

https://www.exploit-db.com/exploits/22599

View Code ZIP pw:eip

References (2)

[Mailing List] http://marc.info/?l=bugtraq&m=105293890422210&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=105292832607981&w=2

Scores

EPSS 0.0069

EPSS Percentile 72.0%

Details

Status published

Products (1)

jelsoft/vbulletin 3.0.0_beta_2

Published Jun 16, 2003

Tracked Since Feb 18, 2026