CVE-2003-1088

Published: Aug 11, 2003Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in index.php for Zorum 3.4 and 3.5 allows remote attackers to inject arbitrary web script or HTML via the method parameter.

Affected (6)

Products: Phpoutsourcing: Zorum

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Phpoutsourcing Zorum	Version 3.0
Phpoutsourcing Zorum	Version 3.1
Phpoutsourcing Zorum	Version 3.2
Phpoutsourcing Zorum	Version 3.3
Phpoutsourcing Zorum	Version 3.4
Phpoutsourcing Zorum	Version 3.5

References (10)

http://marc.info/?l=bugtraq&m=106063199925536&w=2

Source: cve@mitre.org

http://secunia.com/advisories/9497

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1013365

Source: cve@mitre.org

ExploitVendor Advisory

http://www.securityfocus.com/bid/8388

Source: cve@mitre.org

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/12867

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=106063199925536&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/9497

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1013365

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

http://www.securityfocus.com/bid/8388

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/12867

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.