Description

chatbox.php in e107 0.554 and 0.603 allows remote attackers to cause a denial of service (pages fail to load) via HTML in the Name field, which prevents the main.php form from being loaded.

Remediation

References

CVE-2003-1191

Related Vulnerabilities

PHP Other Vulnerability (CVE-2006-4625)

WordPress Plugin Gravity Forms Salesforce Cross-Site Scripting (1.2.4)

WordPress Plugin Migration, Backup, Staging-WPvivid Cross-Site Scripting (0.9.55)

WordPress Plugin Ajax Contact Form Cross-Site Scripting (1.0)

MediaWiki Improper Authentication Vulnerability (CVE-2014-2665)

Severity

Medium

Classification

CVE-2003-1191

Tags

Missing Update Known Vulnerabilities