CVE-2007-1519 in PHP-Nukeinfo

Summary

Cross-site scripting (XSS) vulnerability in modules.php in PHP-Nuke 8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search operation in the Downloads module, a different product than CVE-2006-3948.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

03/20/2007

Disclosure

03/20/2007

Moderation

VulDB entry created

Entries

VDB-35692 (1)

CPE

ready

CWE

CWE-79 (Confirmed)

CVSS

4.3

EPSS

0.00425

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-1519
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-1519
CVE Details	https://www.cvedetails.com/cve/CVE-2007-1519/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!