|
PHP-Nuke Modules.php Multiple Cross-Site Scripting Vulnerabilities
No exploit is required. The following proof of concept has been supplied: http://www.example.com/nuke71/modules.php?name=Recommend_Us&op=SiteSent&fname=>[xss code here] http://www.example.com/nuke71/modules.php?name=Downloads&d_op=TopRated&ratenum=>[xss code here]&ratetype=x More exploitation techniques are available in the message reference. |
|
|
Privacy Statement |
