← back
CVE-2004-1829

CVE-2004-1829

EPSS 1.9%
Multiple cross-site scripting (XSS) vulnerabilities in error.php in Gijza.net Error Manager 2.1 for PHP-Nuke 6.0 allow remote attackers to inject arbitrary web script or HTML via the (1) pagetitle or (2) error parameters, or (3) certain parameters in the error log.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/23845unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=107963064317560&w=2http://secunia.com/advisories/11164https://exchange.xforce.ibmcloud.com/vulnerabilities/15529https://exchange.xforce.ibmcloud.com/vulnerabilities/15530http://www.osvdb.org/4384http://www.securityfocus.com/bid/9911