2.6 CVE-2002-1996
Exploit Patch
Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php.
https://nvd.nist.gov/vuln/detail/CVE-2002-1996
Categories
CWE-NVD-Other
References
BID Patch
| 4350 Patch |
BUGTRAQ Patch Exploit
| 20020322 PostNuke Bugged Exploit Patch |
| 20020322 Re: PostNuke Bugged |
MISC
XF Patch
CPE
| cpe | start | end |
|---|---|---|
| Configuration 1 | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.7:*:*:*:*:*:*:* | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.62:*:*:*:*:*:*:* | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.63:*:*:*:*:*:*:* | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.64:*:*:*:*:*:*:* | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.70:*:*:*:*:*:*:* | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.71:*:*:*:*:*:*:* | ||
| cpe:2.3:a:postnuke_software_foundation:postnuke:0.703:*:*:*:*:*:*:* | ||
Patch
| Url |
|---|
| 4350 |
| 20020322 PostNuke Bugged |
| postnuke-modules-index-css(8605) |
Exploits
Exploit-db.com
| id | description | date | |
|---|---|---|---|
| No known exploits | |||
Other (github, ...)
| Url |
|---|
| 20020322 PostNuke Bugged |
CAPEC
| id | description | severity |
|---|---|---|
| No entry | ||
Sherlock® flash
Take a picture of your computer network in a few clicks !
The Sherlock® flash audit solution allows you to perform an audit to strengthen the security of your IT assets. Vulnerability analysis of your physical and virtual equipment. Patch planning by priority level and time available. Detailed and intuitive reporting.
