Multiple Cross-Site Scripting (XSS) Vulnerabilities in PostNuke 0.760-RC4b

Multiple Cross-Site Scripting (XSS) Vulnerabilities in PostNuke 0.760-RC4b

CVE-2005-2689 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.760-RC4b allows remote attackers to inject arbitrary web script or HTML via (1) the moderate parameter to the Comments module or (2) htmltext parameter to html/user.php.

Learn more about our Web App Pen Testing.