CVE-2002-0319 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2002-0319

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting vulnerability in edituser.php for pforum 1.14 and earlier allows remote attackers to execute script and steal cookies from other users via Javascript in a username.

Affected Software

Name	Vendor	Start Version	End Version
Pforum	Powie	1.11 (including)	1.11 (including)
Pforum	Powie	1.12 (including)	1.12 (including)
Pforum	Powie	1.13 (including)	1.13 (including)
Pforum	Powie	1.14 (including)	1.14 (including)

References

http://marc.info/?l=bugtraq\u0026m=101446366708757\u0026w=2
http://www.iss.net/security_center/static/8263.php
http://www.securityfocus.com/bid/4165