3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in player.php in Nuke Evolution Xtreme 2.x allows remote attackers to inject arbitrary web script or HTML via the defaultVisualExt parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-1457
Cross-site scripting XSS vulnerability in player.php in Nuke Evolution Xtreme 2.x allows remote attackers to inject arbitrary web script or HTML via the defaultVisualExt parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-1457
CVE-2009-1457 describes a cross-site scripting (XSS) vulnerability in the player.php component of Nuke Evolution Xtreme 2.x, exploitable via the defaultVisualExt parameter. The issue allows remote attackers to inject arbitrary web script or HTML. The connected documents confirm the affected produ...