CVE-2001-1524

PHP-Nuke <= 5.3.1 - Cross-Site Scripting via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2001-1524. PoCs published by Cabezon Aurélien.

AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in PHPNuke, where malicious script code can be injected via the 'user.php' page or other scripts like 'modules.php'. The vulnerability allows execution of arbitrary JavaScript in the context of the victim's session, potentially leading to cookie theft.

Description

Cross-site scripting (XSS) vulnerability in PHP-Nuke 5.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) uname parameter in user.php, (2) ttitle, letter and file parameters in modules.php, (3) subject, story and storyext parameters in submit.php, (4) upload parameter in admin.php and (5) fname parameter in friend.php.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Cabezon Aurélien · textwebappsphp
https://www.exploit-db.com/exploits/21165

The provided text describes a cross-site scripting (XSS) vulnerability in PHPNuke, where malicious script code can be injected via the 'user.php' page or other scripts like 'modules.php'. The vulnerability allows execution of arbitrary JavaScript in the context of the victim's session, potentially leading to cookie theft.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: PHPNuke (versions 7.2 and prior)
No auth needed
Prerequisites: Victim must click a crafted URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Cabezon Aurélien · textwebappsphp
https://www.exploit-db.com/exploits/21166

The provided text describes a cross-site scripting (XSS) vulnerability in PHPNuke and PostNuke, specifically in the 'user.php' and 'modules.php' scripts. It includes an example exploit URL demonstrating the vulnerability.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: PHPNuke 7.2 and prior, PostNuke
No auth needed
Prerequisites: A vulnerable version of PHPNuke or PostNuke · User interaction to click a malicious link
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/7654.php
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/245691
Third Party Advisory, VDB Entry mailing-list x_refsource_vuln-dev
http://online.securityfocus.com/archive/82/246603
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/245875
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/82/243545
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/3609

Scores

EPSS 0.0201
EPSS Percentile 78.4%

Details

Status published
Products (11)
francisco_burzi/php-nuke 3.0
francisco_burzi/php-nuke 4.0
francisco_burzi/php-nuke 4.3
francisco_burzi/php-nuke 4.4
francisco_burzi/php-nuke 4.4.1a
francisco_burzi/php-nuke 5.0
francisco_burzi/php-nuke 5.0.1
francisco_burzi/php-nuke 5.1
francisco_burzi/php-nuke 5.2
francisco_burzi/php-nuke 5.2a
... and 1 more
Published Dec 31, 2001
Tracked Since Feb 18, 2026