CVE-2005-0901 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in NukeBookmarks 0.6 for PHP-Nuke allow remote attackers to inject arbitrary web script or HTML via the (1) catname (2) markname (3) comment or (4) category parameter.

Reference

http://marc.info/?l=bugtraq&m=111186145609320&w=2 http://nukebookmarks.sourceforge.net/ http://zone-h.org/advisories/read/id=7356