PHP-Nuke 6.x/7.x - 'header.php?Pagetitle' Cross-Site Scripting
| EKU-ID: 32503 | CVE: CVE-2006-0676;OSVDB-23140 | OSVDB-ID: |
| Author: Janek Vind | Published: 2006-02-13 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 32503 | CVE: CVE-2006-0676;OSVDB-23140 | OSVDB-ID: |
| Author: Janek Vind | Published: 2006-02-13 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/16608/info PHPNuke is prone to a cross-site scripting vulnerability. This issue affects the 'header.php' script. PHPNuke 7.8 and prior versions are reportedly vulnerable. http://www.example.com/nuke78/?pagetitle=w00t></title></head><body>test