Cross-Site Scripting Vulnerability in pforum by Pforum Technologies
CVE-2002-0319

Currently unrated

Key Information:

Vendor: Powie
Status: Pforum
Vendor: CVE Published:; 25 June 2002

What is CVE-2002-0319?

A cross-site scripting vulnerability exists in the edituser.php script of pforum versions 1.14 and earlier. This flaw enables remote attackers to inject malicious JavaScript code via the username field. When a user views the manipulated username, scripts execute in their browser, potentially compromising their session cookies. This can lead to unauthorized access and exploitation of user accounts, emphasizing the need for immediate updates and security measures.