Required CVE Record Information
Description
Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to inject arbitrary web script or HTML via the uname parameter.
References 4 Total
- online.securityfocus.com: 20011215 PHPNuke holes mailing-list
- iss.net: phpnuke-postnuke-css(7654) vdb-entry
- online.securityfocus.com: 20011203 Phpnuke Cross site scripting vulnerability mailing-list
- securityfocus.com: 3609 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- online.securityfocus.com: 20011215 PHPNuke holes mailing-listx_transferred
- iss.net: phpnuke-postnuke-css(7654) vdb-entryx_transferred
- online.securityfocus.com: 20011203 Phpnuke Cross site scripting vulnerability mailing-listx_transferred
- securityfocus.com: 3609 vdb-entryx_transferred