CVE-2006-0185

Php-Nuke Pool and News Modules - Cross-Site Scripting via IMG Tag SRC Attribute

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0185. PoCs published by night_warrior771.

AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in PHPNuke's Pool and News Modules, allowing execution of arbitrary JavaScript to steal cookies. The provided code includes a malicious script to exfiltrate cookies to an attacker-controlled server.

Description

Multiple cross-site scripting vulnerabilities in the (1) Pool or (2) News Modules in Php-Nuke allow remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.

Exploits (1)

exploitdb WORKING POC VERIFIED
by night_warrior771 · textwebappsphp
https://www.exploit-db.com/exploits/27060

This exploit demonstrates an HTML injection vulnerability in PHPNuke's Pool and News Modules, allowing execution of arbitrary JavaScript to steal cookies. The provided code includes a malicious script to exfiltrate cookies to an attacker-controlled server.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: PHPNuke (Pool and News Modules)
No auth needed
Prerequisites: Access to a vulnerable PHPNuke installation with exposed Pool or News Modules
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0125
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18374
Exploit mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/421322
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16192

Scores

EPSS 0.0225
EPSS Percentile 80.6%

Details

Status published
Products (2)
php-nuke/news_module
php-nuke/pool_module
Published Jan 12, 2006
Tracked Since Feb 18, 2026