CVE-2001-1522 — Cross-site Scripting in Burzi Php-nuke

3 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

0.0%

top 94.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Francisco Burzi Php-nuke

Timeline

PublishedDec 31

Latest updateApr 30

Description

Cross-site scripting (XSS) vulnerability in im.php in IMessenger for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via a message.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDfrancisco_burzi/php-nuke8.0_final

🔴Vulnerability Details

GHSA

GHSA-p5h7-fv48-95r8: Cross-site scripting (XSS) vulnerability in im↗2022-04-30

▶

CVEList

CVE-2001-1522: Cross-site scripting (XSS) vulnerability in im↗2005-07-14

▶