Signature Detail

Short Name	HTTP:XSS:PHPNUKE-BOOKMARKS
Severity	Medium
Recommended	No
Category	HTTP
Keywords	PHP-Nuke Cross Site Script Attack via Bookmark
Release Date	2005/04/21
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: PHP-Nuke Cross Site Script Attack via Bookmark

This signature detects a cross site script attack against PHPNuke. PHPNuke 5.0.2 and earlier versions are vulnerable. Attackers can exploit the bookmark module.

Extended Description

A remote attacker could inject and execute SQL code on vulnerable versions of PHPNuke.

References

CVE: CVE-2005-0902

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: PHP-Nuke Cross Site Script Attack via Bookmark

Extended Description

References