Description
Cross-site scripting (XSS) vulnerability in phptonuke.php for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the filnavn parameter.
Exploits (1)
References (3)
Core 3
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3807
Exploit mailing-list
x_refsource_vuln-dev
http://archives.neohapsis.com/archives/vuln-dev/2002-q1/0048.html
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/7837.php
Scores
EPSS
0.0052
EPSS Percentile
66.8%
Details
Status
published
Products (1)
lebios/phptonuke.php
1.0
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026