Description
Cross-site scripting (XSS) vulnerabilities in XMB Forum 1.8 Partagium allow remote attackers to insert arbitrary script via (1) the member parameter to member.php or (2) the action parameter to buddy.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Knight Commander · textwebappsphp
https://www.exploit-db.com/exploits/22821
References (2)
Core 2
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105638720409307&w=2
Various Sources x_refsource_misc
https://docs.xmbforum2.com/index.php?title=Security_Issue_History
Scores
EPSS
0.0049
EPSS Percentile
65.5%
Details
Status
published
Products (1)
xmb_forum/xmb
1.8
Published
Aug 07, 2003
Tracked Since
Feb 18, 2026