Description
Cross-site scripting vulnerability in PHPWiki Postnuke wiki module allows remote attackers to execute script as other PHPWiki users via the pagename parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Pistone · textwebappsphp
https://www.exploit-db.com/exploits/21622
References (3)
Core 3
Core References
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5254
Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9627.php
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0190.html
Scores
EPSS
0.0839
EPSS Percentile
92.4%
Details
Status
published
Products (6)
php-wiki/php-wiki
1.2
php-wiki/php-wiki
1.2.1
php-wiki/php-wiki
1.2.2
php-wiki/php-wiki
1.3.1
php-wiki/php-wiki
1.3.2
php-wiki/php-wiki
1.3.3
Published
Oct 04, 2002
Tracked Since
Feb 18, 2026