Unrated severityNVD Advisory· Published Aug 11, 2003· Updated Jun 16, 2026
CVE-2003-1088
CVE-2003-1088
Description
Cross-site scripting (XSS) vulnerability in index.php for Zorum 3.4 and 3.5 allows remote attackers to inject arbitrary web script or HTML via the method parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:phpoutsourcing:zorum:3.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:phpoutsourcing:zorum:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:phpoutsourcing:zorum:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:phpoutsourcing:zorum:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:phpoutsourcing:zorum:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:phpoutsourcing:zorum:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:phpoutsourcing:zorum:3.5:*:*:*:*:*:*:*
- Range: 3.4, 3.5
Patches
Vulnerability mechanics
References
5- securitytracker.com/idnvdExploitVendor Advisory
- www.securityfocus.com/bid/8388nvdExploitVendor Advisory
- secunia.com/advisories/9497nvdVendor Advisory
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/12867nvd
News mentions
0No linked articles in our index yet.