Nuked-klan : Security Vulnerabilities, CVEs, Published In 2003 (XSS)

CVE-2003-1371

Nuked-Klan 1.3b, and possibly earlier versions, allows remote attackers to obtain sensitive server information via an op parameter set to phpinfo for the (1) Team, (2) News, or (3) Liens modules.
Max CVSS
4.3
EPSS Score
0.47%
Published
2003-12-31
Updated
2017-07-29

CVE-2003-1370

Multiple cross-site scripting (XSS) vulnerabilities in Nuked-Klan 1.2b allow remote attackers to inject arbitrary HTML or web script via (1) the Author field in the Guestbook module, (2) the Titre or Pseudo fields in the Forum module, or (3) "La Tribune Libre" in the Shoutbox module.
Max CVSS
4.3
EPSS Score
0.35%
Published
2003-12-31
Updated
2017-07-29

CVE-2003-1238

Cross-site scripting vulnerability (XSS) in Nuked-Klan 1.3 beta and earlier allows remote attackers to steal authentication information via cookies by injecting arbitrary HTML or script into op of the (1) Team, (2) News, and (3) Liens modules.
Max CVSS
5.8
EPSS Score
0.30%
Published
2003-12-31
Updated
2008-09-05
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close