Home page logo
/

bugtraq logo Bugtraq mailing list archives

Multiple XSS vulnerabilites in PHPNuke
From: Bruno Morisson <morisson () genhex org>
Date: 10 Oct 2002 14:16:46 +0100

Yes, more XSS in phpnuke...

Since Francisco Bruzi didn't bother to answer to our submissions and
e-mail, as usual, here goes the full advisory.

The obvious workaround to most of the bugs is to use "strip_tags()"
everywhere.

There are probably a lot more, since these are all straight forward.

Regards

Attachment: phppuke.txt
Description:


  By Date           By Thread  

Current thread:
  • Multiple XSS vulnerabilites in PHPNuke Bruno Morisson (Oct 12)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]