CVE-2002-1429
Title: endity.com ShoutBOX XSS via site parameter
XSS
Proof Of Concept
PoC Available for CVE-2002-1429
CWE Category
NVD-CWE-noinfo
Published Date
Apr 11, 2003
Modified Date
Jun 16, 2026
Exploit Status
Available
Score
5.0
CVSS v2.0
Exploit Probability (EPSS)
6.61%
Vulnerability Summary
CVE-2002-1429: Cross-site scripting vulnerability in board.php of endity.com ShoutBOX allows remote attackers to inject arbitrary HTML into the shoutbox page via the site parameter.
Impacted Vendors
Reference Links
http://archives.neohapsis.com/archives/bugtraq/2002-07/0389.html
http://endity.com/board/index.php?act=ST&f=3&t=68&s=363128162825b2d7fcf60c9cd2a292fe
http://www.iss.net/security_center/static/9739.php
http://www.securityfocus.com/bid/5354
http://archives.neohapsis.com/archives/bugtraq/2002-07/0389.html
http://endity.com/board/index.php?act=ST&f=3&t=68&s=363128162825b2d7fcf60c9cd2a292fe
http://www.iss.net/security_center/static/9739.php
http://www.securityfocus.com/bid/5354
CVSS v2.0
Source Entity
[email protected]
Severity
MEDIUM
5.0
Access Vector
N/A
Authentication
N/A
RAW VECTOR
AV:N/AC:L/Au:N/C:N/I:P/A:N
Associated Attack Patterns (CAPEC)
Total: PatternsNo specific attack patterns mapped.
Likelihood
Severity
Page /
CVE-2002-1429 Exploits & PoCs (Proof Of Concept)
Exploit-DB
https://www.exploit-db.com/exploits/21668
MODIFIED
Vulnerability data updated via NVD.
MODIFIED
Vulnerability data or affected products updated.
PUBLISHED
Vulnerability first announced in NVD.
Attack Vector Matrix
Access Vector
N/A
Complexity
N/A
Privileges
N/A
Interaction
NONE
CVSS Vector String
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Stack
No specific products linked.