CVE-2003-1372: XSS
First published: Wed Dec 31 2003(Updated: )
Cross-site scripting (XSS) vulnerability in links.php script in myPHPNuke 1.8.8, and possibly earlier versions, allows remote attackers to inject arbitrary HTML and web script via the (1) ratenum or (2) query parameters.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | ||
| Microsoft All Windows | ||
| Unix Unix | =any_version | |
| Myphpnuke Myphpnuke | =1.8.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/linux
- canonical/linux linux kernel
- vendor/microsoft
- canonical/microsoft all windows
- vendor/unix
- canonical/unix unix
- version/unix unix/any_version
- vendor/myphpnuke
- canonical/myphpnuke myphpnuke
- version/myphpnuke myphpnuke/1.8.8