CVE-2003-0981
MEDIUMFreeScripts VisitorBook LE - Origin Validation Error
Title source: llmDescription
FreeScripts VisitorBook LE (visitorbook.pl) logs the reverse DNS name of a visiting host, which allows remote attackers to spoof the origin of their incoming requests and facilitate cross-site scripting (XSS) attacks.
References (2)
Core 2
Core References
Broken Link, Patch, Vendor Advisory x_refsource_misc
http://www.westpoint.ltd.uk/advisories/wp-03-0001.txt
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107107840622493&w=2
Scores
CVSS v3
6.1
EPSS
0.0038
EPSS Percentile
29.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-346
Status
published
Products (1)
freescripts/visitorbook_le
Published
Jan 05, 2004
Tracked Since
Feb 18, 2026