CVE-2004-0322

XMB 1.8 Final SP2 - Cross-Site Scripting via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-0322. PoCs published by Janek Vind.

AI-analyzed exploit summary This exploit demonstrates an XSS vulnerability in XMB Forum by injecting malicious JavaScript via the 'align' attribute in BBCode. The PoC triggers an alert with the user's cookies when the mouse hovers over the injected text.

Description

Multiple cross-site scripting (XSS) vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to execute arbitrary script as other users via the (1) member parameter in member.php, (2) uid parameter in u2uadmin.php, (3) user parameter in editprofile.php, (4) an onmouseover event in an align tag when bbcode is allowed, or (5) img tag where bbcode is allowed.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Janek Vind · textwebappsphp
https://www.exploit-db.com/exploits/23747

This exploit demonstrates an XSS vulnerability in XMB Forum by injecting malicious JavaScript via the 'align' attribute in BBCode. The PoC triggers an alert with the user's cookies when the mouse hovers over the injected text.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: XMB Forum (version not specified)
No auth needed
Prerequisites: User interaction (mouse hover) · Victim must view the malicious post
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Janek Vind · textwebappsphp
https://www.exploit-db.com/exploits/23745

This exploit demonstrates an XSS vulnerability in XMB Forum by injecting a script tag into the 'uid' parameter of u2uadmin.php, which executes arbitrary JavaScript in the context of the user's browser.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: XMB Forum 1.8 SP2
No auth needed
Prerequisites: Access to the target XMB Forum instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Janek Vind · textwebappsphp
https://www.exploit-db.com/exploits/23746

This exploit demonstrates an XSS vulnerability in XMB Forum by injecting a script tag into the 'user' parameter of the editprofile.php page. The lack of input sanitization allows arbitrary JavaScript execution in the context of the victim's browser.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: XMB Forum 1.8 SP2
No auth needed
Prerequisites: Access to the target XMB Forum instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15292
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15294
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9726
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2004-02/0645.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107756526625179&w=2

Scores

EPSS 0.0486
EPSS Percentile 90.9%

Details

Status published
Products (3)
xmb_forum/xmb 1.8
xmb_forum/xmb 1.8_sp1
xmb_forum/xmb 1.8_sp2
Published Feb 23, 2004
Tracked Since Feb 18, 2026