← CVECheck
HomeVulnerabilities

CVE-2003-0442 — MEDIUM severity vulnerability (Cross-site scripting (XSS) vulnerability in the transparent)

Cross-site scripting (XSS) vulnerability in the transparent SID support capability for PHP before 4.3.2 (session.use_trans_sid) allows remote attackers to insert arbitrary script via the PHPSESSID parameter.

CVE IDCVE-2003-0442
SeverityMEDIUM
CVSS score4.3
CVSS vectorAV:N/AC:M/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2003-07-24
Last modified2026-04-16
DescriptionCross-site scripting (XSS) vulnerability in the transparent SID support capability for PHP before 4.3.2 (session.use_trans_sid) allows remote attackers to insert arbitrary script via the PHPSESSID parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →