Bug 3217 – PHP-Nuke 6.5 XSS Vuln, for the record

Bug 3217 - PHP-Nuke 6.5 XSS Vuln, for the record

Summary:

PHP-Nuke 6.5 XSS Vuln, for the record

Status:	CLOSED FIXED

Product:	Security
Classification:	Unclassified
Component:	General / Other Security Issue
Version:	unspecified
Platform:	Other other

Importance:	P2 normal
Assigned To:	SM Security List

URL:	http://news.sourcemage.org/article.ph...

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2003-04-24 20:16 UTC by Seth Woolley
Modified:	2003-10-19 23:16 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
mainfile.php patch (4.67 KB, patch) 2003-04-24 20:23 UTC, Seth Woolley	Details \| Diff
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Seth Woolley 2003-04-24 20:16:46 UTC

http://news.sourcemage.org/article.php?story=20030424200209745

Comment 1 Seth Woolley 2003-04-24 20:21:50 UTC

Sergey, I fixed this bug, FYI.

Comment 2 Seth Woolley 2003-04-24 20:23:43 UTC

Created attachment 940 [details]
mainfile.php patch

This is a generated patch from the fixed mainfile.php given on bugtraq.

I guess people don't post their own patches now and you have to go through the
tedium of making your own.

Comment 3 games 2003-10-19 23:16:53 UTC

if any of these still have issues outstanding then they can be reopened, but
most  have just been overlooked/forgotten
("these" refers to the 611 fixed but not closed bugs I just found in our database)