Multiple Cross-Site Scripting (XSS) Vulnerabilities in PostNuke Download Module

Multiple Cross-Site Scripting (XSS) Vulnerabilities in PostNuke Download Module

CVE-2005-0616 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in the Download module for PostNuke 0.750 and 0.760-RC2 allow remote attackers to inject arbitrary web script or HTML via the (1) Program name, (2) File link, (3) Author name (4) Author e-mail address, (5) File size, (6) Version, or (7) Home page variables.

Learn more about our Web App Pen Testing.