Cross-site scripting (XSS) vulnerability in index.php in the eWebsite eWeather (Weather) module for PHP-Nuke allows remote malicious users to inject arbitrary web script or HTML via the chart parameter to modules.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ewebsite eweather |