VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2294

CVE-2004-2294

Description

PHP-Nuke Reviews module XSS vulnerability allows remote attackers to inject arbitrary web script via hex-encoded sequences.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

PHP-Nuke Reviews module XSS vulnerability allows remote attackers to inject arbitrary web script via hex-encoded sequences.

Vulnerability

A canonicalize-before-filter error in the send_review function within the Reviews module of PHP-Nuke versions 6.0 through 7.3 allows remote attackers to inject arbitrary web script or HTML. This occurs because the text parameter is checked for dangerous sequences before it is canonicalized, leading to a cross-site scripting (XSS) vulnerability [1].

Exploitation

An attacker can exploit this vulnerability by crafting a malicious URI that includes hex-encoded XSS sequences within the text parameter of the Reviews module. The attacker needs to trick a victim into visiting this malicious link. Examples of such URIs are provided in the references, targeting parameters like url or cover [1].

Impact

Successful exploitation of this vulnerability allows a remote attacker to execute arbitrary web script or HTML in the victim's browser. This can lead to session hijacking, defacement, or redirection to malicious websites, compromising the user's interaction with the PHP-Nuke application [1].

Mitigation

Not yet disclosed in the available references. PHP-Nuke versions 6.0 to 7.3 are affected. No fixed version or workaround has been published in the provided references.

References
  1. PHP-Nuke 6.x/7.x Reviews Module - Multiple Cross-Site Scripting Vulnerabilities

AI Insight generated on Jun 3, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

16
  • PHP-Nuke/PHP Nuke16 versions
    cpe:2.3:a:francisco_burzi:php-nuke:6.0:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:francisco_burzi:php-nuke:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_beta1:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_final:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.6:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.9:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.0_final:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.3:*:*:*:*:*:*:*
    • (no CPE)range: 6.0 to 7.3

Patches

0

No patches discovered yet.

Vulnerability mechanics

Root cause

"The send_review function in PHP-Nuke's Reviews module fails to properly sanitize user-supplied input before canonicalization, allowing for cross-site scripting."

Attack vector

A remote attacker can craft a malicious URI that includes hex-encoded XSS sequences in the 'text' parameter of the Reviews module. When a user clicks on this link, the malicious script or HTML is executed in their browser because the input is checked for dangerous sequences after it has been canonicalized [ref_id=1]. This bypasses the intended security checks, leading to a cross-site scripting vulnerability.

Affected code

The vulnerability exists in the send_review function within the Reviews module of PHP-Nuke versions 6.0 to 7.3. The issue stems from insufficient sanitization of user-supplied data, specifically within the 'text' parameter, which is processed before canonicalization [ref_id=1].

What the fix does

The advisory does not provide specific details on the patch or how it addresses the vulnerability. However, it indicates that PHP-Nuke versions 6.0 to 7.3 are affected by insufficient sanitization of user-supplied data in multiple modules, including the Reviews module. Users are advised to upgrade to patched versions when available.

Preconditions

  • inputThe 'text' parameter must contain hex-encoded XSS sequences.
  • networkThe attacker must be able to send a crafted URI to a victim.

Reproduction

http://www.osvdb.org/6999 http://www.securityfocus.com/archive/1/365865 http://www.securityfocus.com/bid/10524

Generated on Jun 3, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

4

News mentions

0

No linked articles in our index yet.