Exploitation Summary
EIP tracks 1 public exploit for CVE-2003-1197. PoCs published by ProXy.
AI-analyzed exploit summary The provided text describes a HTML injection vulnerability in LedForums Beta 1, where insufficient input sanitization in the 'top_message' and 'topic' fields allows execution of arbitrary HTML/JS code. Example URLs demonstrate XSS payloads for cookie theft and redirection.
Description
Cross-site scripting (XSS) vulnerability in index.php for Ledscripts.com LedForums Beta 1 allows remote attackers to inject arbitrary web script or HTML via the (1) top_message parameter or (2) topic field of a new thread.
Exploits (1)
The provided text describes a HTML injection vulnerability in LedForums Beta 1, where insufficient input sanitization in the 'top_message' and 'topic' fields allows execution of arbitrary HTML/JS code. Example URLs demonstrate XSS payloads for cookie theft and redirection.