← Back

CVE-2006-0676

nvd nist
Published: Feb 13, 2006Modified: Apr 16, 2026

JSON object

Loading...
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Exploitability: 8.6 / Impact: 2.9
Source: NVD

Description

Cross-site scripting (XSS) vulnerability in header.php in PHP-Nuke 6.0 to 7.8 allows remote attackers to inject arbitrary web script or HTML via the pagetitle parameter.

Affected (18)

Francisco Burzi
1 product
Php Nuke
Configuration A
18 vulnerable
Vulnerable SoftwareAffected Versions
Francisco Burzi
Php Nuke
Version 6.0
Php Nuke
Version 6.5
Php Nuke
Version 6.5_beta1
Php Nuke
Version 6.5_final
Php Nuke
Version 6.5_rc1
Php Nuke
Version 6.5_rc2
Php Nuke
Version 6.5_rc3
Php Nuke
Version 6.6
Php Nuke
Version 6.7
Php Nuke
Version 6.9
Php Nuke
Version 7.0
Php Nuke
Version 7.1
Php Nuke
Version 7.2
Php Nuke
Version 7.3
Php Nuke
Version 7.6
Php Nuke
Version 7.7
Php Nuke
Version 7.8
Php Nuke
Version 7.9

References (14)

Source: cve@mitre.org
ExploitVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
ExploitVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.