VYPR

News Module

by PHP-Nuke

CVEs (1)

  • CVE-2006-0185Jan 12, 2006
    risk 0.03cvss epss 0.02

    Multiple cross-site scripting vulnerabilities in the (1) Pool or (2) News Modules in Php-Nuke allow remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.