CVE-2005-1610
Tru-Zone NukeET 3.0-3.1 - Cross-Site Scripting via Base64 Encoded Codigo Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2005-1610. PoCs published by Suko & Lostmon.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in NukeET by leveraging Base64-encoded malicious input in a URI variable. The PoC provides a Base64-encoded string that decodes to a script tag, which can be executed in the context of a victim's browser.
Description
Cross-site scripting (XSS) vulnerability in security.php for Tru-Zone NukeET 3.0 and 3.1 allows remote attackers to inject arbitrary web script or HTML via a base64 encoded Codigo parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in NukeET by leveraging Base64-encoded malicious input in a URI variable. The PoC provides a Base64-encoded string that decodes to a script tag, which can be executed in the context of a victim's browser.