Vulnerabilities > CVE-2004-1829 - Multiple vulnerability in Error Manager PHP-Nuke Module 2.1

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
error-manager
exploit available
NVD
Published: 2004-03-18
Updated: 2017-07-11

Summary

Multiple cross-site scripting (XSS) vulnerabilities in error.php in Gijza.net Error Manager 2.1 for PHP-Nuke 6.0 allow remote attackers to inject arbitrary web script or HTML via the (1) pagetitle or (2) error parameters, or (3) certain parameters in the error log.

Vulnerable Configurations

Part Description Count
Application
Error_Manager
1

Exploit-Db

descriptionPHP-Nuke Error Manager Module 2.1 error.php Multiple Variables XSS. CVE-2004-1829. Webapps exploit for php platform
idEDB-ID:23845
last seen2016-02-02
modified2004-03-18
published2004-03-18
reporterJanek Vind
sourcehttps://www.exploit-db.com/download/23845/
titlePHP-Nuke Error Manager Module 2.1 error.php Multiple Variables XSS

References