header-logo
Suggest Exploit
vendor:
PHPNuke
by:
SecurityFocus
3.3
CVSS
MEDIUM
Cross-Site Scripting
79
CWE
Product Name: PHPNuke
Affected Version From: 6
Affected Version To: 6
Patch Exists: YES
Related CWE: N/A
CPE: a:phpnuke:phpnuke:6.0
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

PHPNuke 6.0 Cross-Site Scripting Vulnerability

PHPNuke 6.0 is prone to cross-site scripting attacks. HTML tags are not filtered from links to the 'modules.php' script. Reportedly, the problem lies in the 'Search' page of the 'modules.php' script. It is possible for a malicious attacker to submit a search string that contains HTML code. The value of this search string is not sanitized before it is included in PHP generated HTML and output to the client. This attack may be used to steal a user's cookie-based authentication credentials for the vulnerable PHPNuke site.

Mitigation:

Input validation should be used to ensure that user-supplied data is properly sanitized before being included in HTML output.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/5788/info

PHPNuke 6.0 is prone to cross-site scripting attacks.

HTML tags are not filtered from links to the 'modules.php' script.

Reportedly, the problem lies in the 'Search' page of the 'modules.php' script. It is possible for a malicious attacker to submit a search string that contains HTML code. The value of this search string is not sanitized before it is included in PHP generated HTML and output to the client.

This attack may be used to steal a user's cookie-based authentication credentials for the vulnerable PHPNuke site.

<script>alert(document.cookie);</script>

It is possible to enter the above in the text field provided by the 'Search' page.

Navigation

Suggest Exploit

Services By CQR