Home » Hacking News » PHP-Nuke HTML injection vulnerabilities
PHP-Nuke HTML injection vulnerabilities
by Mario Miri on May 13th, 2003 Multiple HTML/script injection vulnerabilities have been reported for PHP-Nuke. PHP-Nuke does not sufficiently sanitize HTML input.
Vulnerable:
Francisco Burzi PHP-Nuke 6.5 FINAL
Solution:
Unofficial patch is available from:
http://www.phpsecure.info
Discovered by:
Frog Man, [email protected]