mailing list archives
Multiple XSS vulnerabilites in PHPNuke
From: Bruno Morisson <morisson () genhex org>
Date: 10 Oct 2002 14:16:46 +0100
Yes, more XSS in phpnuke...
Since Francisco Bruzi didn't bother to answer to our submissions and
e-mail, as usual, here goes the full advisory.
The obvious workaround to most of the bugs is to use "strip_tags()"
There are probably a lot more, since these are all straight forward.
- Multiple XSS vulnerabilites in PHPNuke Bruno Morisson (Oct 12)