Adam Webb : Security vulnerabilities, CVEs

Copy

CVE-2004-2008

SQL injection vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to execute arbitrary SQL via the jokeid parameter.

Max CVSS

4.6

EPSS Score

0.25%

Published

2004-05-08

Updated

2017-07-11

CVE-2004-2007

Cross-site scripting (XSS) vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to inject arbitrary HTML or web script via the (1) cat parameter in a CatView function or (2) jokeid parameter in a JokeView function.

Max CVSS

4.3

EPSS Score

0.35%

Published

2004-05-08

Updated

2017-07-11

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!