Php-nuke@5.6 Security Vulnerabilities and Issues — Php-nuke@5.6 CVE List

Lucene search

Francisco BurziPhp-nuke5.6

2 matches found

CVE•added 2007/10/19 10:0 a.m.•37 views

CVE-2003-1400

Cross-site scripting (XSS) vulnerability in the Your_Account module for PHP-Nuke 5.0 through 6.0 allows remote attackers to inject arbitrary web script or HTML via the user_avatar parameter.

4.3CVSS5.8AI score0.00121EPSS

CVE•added 2007/10/23 1:0 a.m.•37 views

CVE-2003-1435

SQL injection vulnerability in PHP-Nuke 5.6 and 6.0 allows remote attackers to execute arbitrary SQL commands via the days parameter to the search module.

7.5CVSS8.4AI score0.00015EPSS