CVE-2005-1610 Information

Description

Cross-site scripting (XSS) vulnerability in security.php for Tru-Zone NukeET 3.0 and 3.1 allows remote attackers to inject arbitrary web script or HTML via a base64 encoded Codigo parameter.

Reference

http://lostmon.blogspot.com/2005/05/nukeet-codigo-variable-cross-site.html http://secunia.com/advisories/15332 http://securitytracker.com/id?1013936 http://www.osvdb.org/16214 http://www.securityfocus.com/bid/13570 https://exchange.xforce.ibmcloud.com/vulnerabilities/20540