Sign-up

ID

VAR-200505-1003


CVE

CVE-2005-1023


TITLE

PHPNuke Multi-module cross-site scripting vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200505-156

DESCRIPTION

Multiple cross-site scripting (XSS) vulnerabilities in PHP-Nuke 6.x to 7.6 allow remote attackers to inject arbitrary web script or HTML via the (1) min parameter to the Search module, (2) the categories parameter to the FAQ module, or (3) the ltr parameter to the Encyclopedia module. NOTE: the bid parameter issue in banners.php is already an item in CVE-2005-1000. PHPNuke is reported prone to multiple cross-site scripting vulnerabilities affecting various modules. The affected modules include 'Search', 'FAQ', and 'Encyclopedia'. The 'banners.php' script is also affected. An attacker can exploit these issues by creating a malicious link containing HTML and script code and send this link to a vulnerable user. This can allow for theft of cookie-based authentication credentials and other attacks. PHPNuke 7.6 and prior versions are reportedly affected by these issues

Trust: 1.26

sources: NVD: CVE-2005-1023 // BID: 12983 // VULHUB: VHN-12232

AFFECTED PRODUCTS

vendor:francisco burzimodel:php-nukescope:eqversion:6.7

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.0

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.2

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.4

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.1

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.3

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.6

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.5

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.9

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.0_final

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_rc3

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_rc2

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_final

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.0

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_rc1

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.6

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_beta1

Trust: 1.0

vendor:franciscomodel:burzi php-nuke rc3scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke finalscope:eqversion:7.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.1

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.2

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.7

Trust: 0.3

vendor:franciscomodel:burzi php-nuke betascope:eqversion:6.51

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.6

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.3

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.9

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.6

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc2scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc1scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke finalscope:eqversion:6.5

Trust: 0.3

sources: BID: 12983 // CNNVD: CNNVD-200505-156 // NVD: CVE-2005-1023

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2005-1023
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200505-156
value: MEDIUM

Trust: 0.6

VULHUB: VHN-12232
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2005-1023
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-12232
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-12232 // CNNVD: CNNVD-200505-156 // NVD: CVE-2005-1023

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-1023

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200505-156

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-200505-156

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-12232

EXTERNAL IDS
db:NVDid:CVE-2005-1023
Trust: 2.0
db:CNNVDid:CNNVD-200505-156
Trust: 0.7
db:XFid:19952
Trust: 0.6
db:BUGTRAQid:20050403 FULL PATH DISCLOSURE AND XSS IN PHPNUKE
Trust: 0.6
db:BIDid:12983
Trust: 0.3
db:EXPLOIT-DBid:24190
Trust: 0.1
db:SEEBUGid:SSVID-77923
Trust: 0.1
db:VULHUBid:VHN-12232
Trust: 0.1
sources:
            
            
            VULHUB: VHN-12232 // 
            
            
            
            BID: 12983 // 
            
            
            
            CNNVD: CNNVD-200505-156 // 
            
            
            
            NVD: CVE-2005-1023

REFERENCES
url:http://www.securityreason.com/adv/phpnuke%206.x-7.6-p1.txt
Trust: 1.7
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/19952
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=111263454308478&w=2
Trust: 1.0
url:http://xforce.iss.net/xforce/xfdb/19952
Trust: 0.6
url:http://marc.theaimsgroup.com/?l=bugtraq&m=111263454308478&w=2
Trust: 0.6
url:/archive/1/394872
Trust: 0.3
url:http://marc.info/?l=bugtraq&m=111263454308478&w=2
Trust: 0.1
sources:
            
            
            VULHUB: VHN-12232 // 
            
            
            
            BID: 12983 // 
            
            
            
            CNNVD: CNNVD-200505-156 // 
            
            
            
            NVD: CVE-2005-1023

CREDITS
Discovery is credited to SecurityReason <sp3x@securityreason.com>.
Trust: 0.9
sources:
            
            
            BID: 12983 // 
            
            
            
            CNNVD: CNNVD-200505-156

SOURCES
db:VULHUBid:VHN-12232
db:BIDid:12983
db:CNNVDid:CNNVD-200505-156
db:NVDid:CVE-2005-1023

LAST UPDATE DATE
2024-08-14T13:51:05.417000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-12232date:2017-07-11T00:00:00
db:BIDid:12983date:2009-07-12T11:56:00
db:CNNVDid:CNNVD-200505-156date:2005-10-25T00:00:00
db:NVDid:CVE-2005-1023date:2017-07-11T01:32:30.030

SOURCES RELEASE DATE
db:VULHUBid:VHN-12232date:2005-05-02T00:00:00
db:BIDid:12983date:2005-04-03T00:00:00
db:CNNVDid:CNNVD-200505-156date:2005-05-02T00:00:00
db:NVDid:CVE-2005-1023date:2005-05-02T04:00:00