2 matches found
CVE-2006-0676
Cross-site scripting XSS vulnerability in header.php in PHP-Nuke 6.0 to 7.8 allows remote attackers to inject arbitrary web script or HTML via the pagetitle parameter...
CVE-2006-0676
The CVE-2006-0676 entry describes a Cross‑Site Scripting (XSS) vulnerability in PHP-Nuke, affecting version 6.0 through 7.8. The issue resides in header.php and allows an attacker to inject arbitrary script/HTML via the pagetitle parameter, potentially affecting any pages that reflect this input....