CVE-2004-1817 in PHP-Nukeinfo

Summary

Cross-site scripting (XSS) vulnerability in modules.php in Php-Nuke 7.1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) Your Name field, (2) e-mail field, (3) nicname field, (4) fname parameter, (5) ratenum parameter, or (6) search field.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

05/04/2005

Disclosure

03/15/2004

Moderation

VulDB entry created

Entries

1: VDB-21658

CPE

ready

CWE

CWE-80 (Confirmed)

Exploit

Download

CVSS

4.3

EPSS

0.05678

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1817
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1817
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1817/

◂ Previous Overview Next ▸