Cross-site scripting (XSS) vulnerability in utilities/search.asp in nukedit 4.9.7b allows remote attackers to inject arbitrary web script or HTML via the terms parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Nukedit | Nukedit | 4.9.7b (including) | 4.9.7b (including) |
References
- http://osvdb.org/35484
- http://secunia.com/advisories/25087
- http://www.securityfocus.com/bid/23729
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33998
- http://osvdb.org/35484
- http://secunia.com/advisories/25087
- http://www.securityfocus.com/bid/23729
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33998