MOABI : Continuous Software Improvement

CVE-2003-1539
Description	Cross-site scripting (XSS) vulnerability in ONEdotOH Simple File Manager (SFM) before 0.21 allows remote attackers to inject arbitrary web script or HTML via (1) file names and (2) directory names.
Impact	CVSS v2 : 4.3 MEDIUM
Type	CWE-79
Attack Vector	CVSSv2 Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://secunia.com/advisories/8257 http://sourceforge.net/project/shownotes.php?release_id=144274 http://sourceforge.net/tracker/index.php?func=detail&aid=695597&group_id=60333&atid=493842 http://www.securityfocus.com/bid/7035