Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
postnuke software foundation postnuke 0.62 |
||
postnuke software foundation postnuke 0.63 |
||
postnuke software foundation postnuke 0.64 |
||
postnuke software foundation postnuke 0.7 |
||
postnuke software foundation postnuke 0.703 |
||
postnuke software foundation postnuke 0.70 |
||
postnuke software foundation postnuke 0.71 |