Bugtraq mailing list archives
Multiple XSS vulnerabilites in PHPNuke
From: Bruno Morisson <morisson () genhex org>
Date: 10 Oct 2002 14:16:46 +0100
Yes, more XSS in phpnuke... Since Francisco Bruzi didn't bother to answer to our submissions and e-mail, as usual, here goes the full advisory. The obvious workaround to most of the bugs is to use "strip_tags()" everywhere. There are probably a lot more, since these are all straight forward. Regards
Attachment:
phppuke.txt
Description:
Current thread:
- Multiple XSS vulnerabilites in PHPNuke Bruno Morisson (Oct 12)