Description
Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow remote attackers to insert arbitrary web script, as demonstrated using the msg parameter to file_select.php.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by François SORIN · textwebappsphp
https://www.exploit-db.com/exploits/22818
References (1)
Core 1
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105638743109781&w=2
Scores
EPSS
0.0040
EPSS Percentile
60.7%
Details
Status
published
Products (1)
gero_kohnert/tutos
1.1
Published
Aug 07, 2003
Tracked Since
Feb 18, 2026