Cross-site scripting (XSS) vulnerability in the Search_Enhanced module in PHP-Nuke 7.9 allows remote malicious users to inject arbitrary web script or HTML via the query parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
search enhanced search enhanced 1.1 |
||
search enhanced search enhanced 2.0 |