CVE-2001-1524
published 2001-12-31CVE-2001-1524: Cross-site scripting (XSS) vulnerability in PHP-Nuke 5.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) uname…
PriorityP418medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
2.01%
78.5th percentile
Cross-site scripting (XSS) vulnerability in PHP-Nuke 5.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) uname parameter in user.php, (2) ttitle, letter and file parameters in modules.php, (3) subject, story and storyext parameters in submit.php, (4) upload parameter in admin.php and (5) fname parameter in friend.php.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - 'user.php?uname' Cross-Site Scripting
exploitdb·2001-12-03
CVE-2001-1524 PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - 'user.php?uname' Cross-Site Scripting
PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - 'user.php?uname' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/3609/info
PHPNuke is a website creation/maintenance tool.
PHPNuke is prone to cross-site scripting attacks. It is possible to create a link to the PHPNuke user information page, 'user.php', which contains malicious script code. When the link is clicked by an unsuspecting web user, the malicious script code will be executed on the user in the context of the site running PHPNuke.
This attack may be used to steal a user's cookie-based authentication credentials for the vulnerable PHPNuke site.
PostNuke is also affected by a number of these issues.
This problem has also been reported with other scripts included in the PHPNuke package. More specifically, modules.php,
Exploit-DB
PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - 'modules.php' Multiple Cross-Site Scripting Vulnerabilities
exploitdb·2001-12-03
CVE-2001-1524 PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - 'modules.php' Multiple Cross-Site Scripting Vulnerabilities
PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - 'modules.php' Multiple Cross-Site Scripting Vulnerabilities
---
source: https://www.securityfocus.com/bid/3609/info
PHPNuke is a website creation/maintenance tool.
PHPNuke is prone to cross-site scripting attacks. It is possible to create a link to the PHPNuke user information page, 'user.php', which contains malicious script code. When the link is clicked by an unsuspecting web user, the malicious script code will be executed on the user in the context of the site running PHPNuke.
This attack may be used to steal a user's cookie-based authentication credentials for the vulnerable PHPNuke site.
PostNuke is also affected by a number of these issues.
This problem has also been reported with other scripts included in the PHPNuke package. More spec
Exploit-DB
Solaris 2.x/7.0/8 - Xsun HOME Buffer Overflow
exploitdb·2001-04-10
CVE-2001-0422 Solaris 2.x/7.0/8 - Xsun HOME Buffer Overflow
Solaris 2.x/7.0/8 - Xsun HOME Buffer Overflow
---
// source: https://www.securityfocus.com/bid/2561/info
The X11 server that ships with Sun Microsystems' Solaris, Xsun, contains a locally exploitable buffer overflow vulnerability.
The condition is present when the value of the HOME environment variable is of excessive length (more than 1050 bytes long).
An attacker may exploit this vulnerability to execute arbitrary code with effective group 'root' privileges.
/***********************************/
Solaris 7 (x86) /usr/openwin/bin/Xsun
HOME environment overflow
Proof of Concept Exploitation
[email protected]
Puts a Root shell on local port 1524
/***********************************/
#include
#include
#include
#include
#define BUFLEN 1041
/* seteuid/setuid/inetd shell */
char eyecode[]
No writeups or analysis indexed.
http://online.securityfocus.com/archive/1/245691http://online.securityfocus.com/archive/1/245875http://online.securityfocus.com/archive/82/243545http://online.securityfocus.com/archive/82/246603http://prdownloads.sourceforge.net/phpnuke/PHP-Nuke-5.5.tar.gzhttp://www.iss.net/security_center/static/7654.phphttp://www.securityfocus.com/bid/3609http://online.securityfocus.com/archive/1/245691http://online.securityfocus.com/archive/1/245875http://online.securityfocus.com/archive/82/243545http://online.securityfocus.com/archive/82/246603http://prdownloads.sourceforge.net/phpnuke/PHP-Nuke-5.5.tar.gzhttp://www.iss.net/security_center/static/7654.phphttp://www.securityfocus.com/bid/3609
2001-12-31
Published