Vulnerabilities > CVE-2004-1818 - Multiple vulnerability in WarpSpeed 4nAlbum Module For PHPNuke

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
warpspeed
exploit available
NVD
Published: 2004-03-15
Updated: 2017-07-11

Summary

Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to execute arbitrary script as other users by injecting arbitrary script into the z parameter.

Vulnerable Configurations

Part Description Count
Application
Warpspeed
1

Exploit-Db

descriptionWarpSpeed 4nAlbum Module 0.92 nmimage.php z Parameter XSS. CVE-2004-1818. Webapps exploit for php platform
idEDB-ID:23817
last seen2016-02-02
modified2004-03-15
published2004-03-15
reporterJanek Vind
sourcehttps://www.exploit-db.com/download/23817/
titleWarpSpeed 4nAlbum Module 0.92 nmimage.php z Parameter XSS

References