Cross-site scripting (XSS) vulnerability in modules.php in NukeCalendar 1.1.a, as used in PHP-Nuke, allows remote attackers to inject arbitrary web script or HTML via the eid parameter.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2004-12-30 21:00
Updated : 2017-07-10 18:31
NVD link : CVE-2004-1913
Mitre link : CVE-2004-1913
JSON object : View
CWE
Products Affected
francisco_burzi
- php-nuke
shiba-design
- nukecalendar