Vulnerabilities > CVE-2004-1829 - Multiple vulnerability in Error Manager PHP-Nuke Module 2.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in error.php in Gijza.net Error Manager 2.1 for PHP-Nuke 6.0 allow remote attackers to inject arbitrary web script or HTML via the (1) pagetitle or (2) error parameters, or (3) certain parameters in the error log.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | PHP-Nuke Error Manager Module 2.1 error.php Multiple Variables XSS. CVE-2004-1829. Webapps exploit for php platform |
id | EDB-ID:23845 |
last seen | 2016-02-02 |
modified | 2004-03-18 |
published | 2004-03-18 |
reporter | Janek Vind |
source | https://www.exploit-db.com/download/23845/ |
title | PHP-Nuke Error Manager Module 2.1 error.php Multiple Variables XSS |