Arbitrary Javascript Execution via sid Parameter in phpWebSite 0.8.3

Arbitrary Javascript Execution via sid Parameter in phpWebSite 0.8.3

CVE-2002-2178 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in article.php module for phpWebSite 0.8.3 allows remote attackers to execute arbitrary Javascript script via the sid parameter, as demonstrated using an IMG tag.

Learn more about our Web App Pen Testing.