Vulnerabilities > CVE-2001-1521 - Cross-Site Scripting vulnerability in Postnuke Software Foundation Postnuke 0.62/0.63/0.64

047910
CVSS 2.6 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
high complexity
postnuke-software-foundation
NVD
Published: 2001-12-31
Updated: 2008-09-10

Summary

Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to inject arbitrary web script or HTML via the uname parameter.

Vulnerable Configurations

Part Description Count
Application
Postnuke_Software_Foundation
3

References