Summary
Nuked-klan 1.3b has a cross site scripting bug. An attacker may use it to perform a cross site scripting attack on this host.
In addition to this, another flaw may allow an attacker to obtain the physical path of the remote CGI directory.
Solution
Upgrade to a newer version.
Severity
Classification
-
CVE CVE-2003-1238 -
CVSS Base Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N
Related Vulnerabilities
- Adobe ColdFusion Multiple Vulnerabilities-03 May-2014
- Apache Continuum Cross Site Scripting Vulnerability
- Allegro RomPager HTTP Referer Header Cross Site Scripting Vulnerability
- Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability