Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-2351
CVE-2004-2351
Description
Cross-site scripting (XSS) vulnerability in GBook for Php-Nuke 1.0 allows remote attackers to inject arbitrary web script or HTML via multiple parameters, including (1) name, (2) email, (3) city, and (4) message, which do not use the and tags, which are filtered by PHP-Nuke.
Affected products
3cpe:2.3:a:martin_bauer:gbook:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:martin_bauer:gbook:*:*:*:*:*:*:*:*
- cpe:2.3:a:martin_bauer:gbook:1.4:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.