CVE-2003-1372

CVE Database · CVE-2003-1372

CVE-2003-1372

· N/AModified

CVSS v3.1

N/A

EPSS

1.50%

Published

Dec 31, 2003

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBmyPHPNuke 1.8.8 - 'links.php' Cross-Site Scripting

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in links.php script in myPHPNuke 1.8.8, and possibly earlier versions, allows remote attackers to inject arbitrary HTML and web script via the (1) ratenum or (2) query parameters.

Weaknesses (CWE)

CWE-79

Affected Products (4)

linux · linux_kernel

microsoft · all_windows

unix · unix

myphpnuke · myphpnukevulnerable

References (10)

http://archives.neohapsis.com/archives/bugtraq/2003-02/0231.html

Exploit

http://secunia.com/advisories/8125

http://www.osvdb.org/3931

http://www.securityfocus.com/bid/6892

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/11376

http://archives.neohapsis.com/archives/bugtraq/2003-02/0231.html

Exploit

http://secunia.com/advisories/8125

http://www.osvdb.org/3931

http://www.securityfocus.com/bid/6892

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/11376

KEV Catalog EPSS Scores Vendors All CVEs