|
|
CVE Reference: CVE-2005-1695 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-1695 |
|
|
Description: Multiple cross-site scripting (XSS) vulnerabilities in the RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allow remote attackers to inject arbitrary web script or HTML via the (1) rss_url parameter to magpie_slashbox.php, or the url parameter to (2) magpie_simple.php or (3) magpie_debug.php. |
|
|
CVE Status: Candidate |
|
|
References: CONFIRM http://news.postnuke.com/modules.php?op=modload&name=News&file=article&sid=2691 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=111670506926649&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=111670482500552&w=2 |
|
| Return to the previous page. |
