IDCVSSSummaryLast (major) updatePublished
CVE-2004-2007 4.3
Cross-site scripting (XSS) vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to inject arbitrary HTML or web script via the (1) cat parameter in a CatView function or (2) jokeid parameter in a JokeView function.
11-07-2017 - 01:31 08-05-2004 - 04:00
CVE-2004-2008 4.6
SQL injection vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to execute arbitrary SQL via the jokeid parameter.
11-07-2017 - 01:31 08-05-2004 - 04:00
CVE-2004-2009 5.0
NukeJokes 1.7 and 2 Beta allows remote attackers to obtain the full path of the server via (1) a direct call to mainfunctions.php, (2) an invalid jokeid parameter in a JokeView function or (3) an invalid cat parameter in a CatView function, which rev
11-07-2017 - 01:31 08-05-2004 - 04:00
Back to Top Mark selected
Back to Top