CVE-2003-0590

Splatt Forum - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in Splatt Forum allows remote attackers to insert arbitrary HTML and web script via the post icon (image_subject) field.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Lethalman · htmlwebappsphp

https://www.exploit-db.com/exploits/22910

View Code ZIP pw:eip

References (2)

[Mailing List] http://marc.info/?l=bugtraq&m=105830019209609&w=2

[Various Sources] http://members.fortunecity.it/lethalman2002/bugs/splatt.html

Scores

EPSS 0.0246

EPSS Percentile 85.3%

Details

Status published

Products (1)

splatt/splatt_forum

Published Aug 18, 2003

Tracked Since Feb 18, 2026