VYPR
Unrated severityNVD Advisory· Published Jun 9, 2003· Updated Jun 16, 2026

CVE-2003-0318

CVE-2003-0318

Description

Cross-site scripting (XSS) vulnerability in the Statistics module for PHP-Nuke 6.0 and earlier allows remote attackers to insert arbitrary web script via the year parameter.

Affected products

2
  • PHP-Nuke/PHP Nuke2 versions
    cpe:2.3:a:francisco_burzi:php-nuke:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:francisco_burzi:php-nuke:*:*:*:*:*:*:*:*range: <=6.0
    • (no CPE)range: <=6.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.