Show filters
44 Total Results
Displaying 41-44 of 44
Sort by:
Attacker Value
Unknown

CVE-2002-0535

Disclosure Date: July 03, 2002 (last updated February 22, 2025)
Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier allows remote attackers to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title.
0
0
Attacker Value
Unknown

CVE-2001-1521

Disclosure Date: December 31, 2001 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to inject arbitrary web script or HTML via the uname parameter.
0
0
Attacker Value
Unknown

CVE-2001-0911

Disclosure Date: November 21, 2001 (last updated February 22, 2025)
PHP-Nuke 5.1 stores user and administrator passwords in a base-64 encoded cookie, which could allow remote attackers to gain privileges by stealing or sniffing the cookie and decoding it.
0
0
Attacker Value
Unknown

CVE-2001-1460

Disclosure Date: October 13, 2001 (last updated February 22, 2025)
SQL injection vulnerability in article.php in PostNuke 0.62 through 0.64 allows remote attackers to bypass authentication via the user parameter.
0
0
View More Topics  < Previous