2 matches found
CVE-2007-6090
Cross-site scripting XSS vulnerability in index.php in Nuked-Klan 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-6090
CVE-2007-6090 is an XSS vulnerability in Nuked-Klan 1.7.5 where the index.php file parameter accepts unsanitized input, enabling remote attackers to inject arbitrary script via the file parameter. Exploitation details exist (Exploit-DB entry) showing crafted URLs that trigger script execution in ...