PHP-Nuke 6.0 – Web Mail Script Injection

PHP-Nuke 6.0 – Web Mail Script Injection

漏洞ID 1053663 漏洞类型
发布时间 2002-12-16 更新时间 2002-12-16
图片[1]-PHP-Nuke 6.0 – Web Mail Script Injection-安全小百科CVE编号 N/A
图片[2]-PHP-Nuke 6.0 – Web Mail Script Injection-安全小百科CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22090
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/6400/info

A vulnerability has been discovered in the PHP-Nuke web mail module. Due to insufficient sanitization of HTML emails it is possible for an attacker to embed script code into malicious messages. Opening an email containing attacker-supplied script code would result in the execution of arbitrary script code within the client's browser.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/22090.zip

相关推荐: Sun的ping程序缓冲区溢出漏洞

Sun的ping程序缓冲区溢出漏洞 漏洞ID 1207293 漏洞类型 缓冲区溢出 发布时间 1998-09-09 更新时间 1998-09-09 CVE编号 CVE-1999-0056 CNNVD-ID CNNVD-199809-011 漏洞平台 N/A C…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享