News Module

DATE	CVE	VULNERABILITY TITLE	RISK
2006-01-12	CVE-2006-0185	Modules IMG Tag HTML Injection vulnerability in PHP-Nuke News Module and Pool Module Multiple cross-site scripting vulnerabilities in the (1) Pool or (2) News Modules in Php-Nuke allow remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag. network low complexity php-nuke	5.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.