← CVECheck
HomeVulnerabilities

CVE-2003-0770 — HIGH severity vulnerability (FUNC.pm in IkonBoard 3.1.2a and earlier, including 3.1.1, do)

FUNC.pm in IkonBoard 3.1.2a and earlier, including 3.1.1, does not properly cleanse the "lang" cookie when it contains illegal characters, which allows remote attackers to execute arbitrary code when the cookie is inserted into a Perl "eval" statement.

CVE IDCVE-2003-0770
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-09-22
Last modified2026-04-16
DescriptionFUNC.pm in IkonBoard 3.1.2a and earlier, including 3.1.1, does not properly cleanse the "lang" cookie when it contains illegal characters, which allows remote attackers to execute arbitrary code when the cookie is inserted into a Perl "eval" statement.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →