RSS   Vulnerabilities for 'Nukejokes'   RSS

2004-05-08
 
CVE-2004-2008

 
 
SQL injection vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to execute arbitrary SQL via the jokeid parameter.

 
 
CVE-2004-2007

 
 
Cross-site scripting (XSS) vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to inject arbitrary HTML or web script via the (1) cat parameter in a CatView function or (2) jokeid parameter in a JokeView function.

 

Copyright 2024, cxsecurity.com

 

Back to Top