CVE-2002-1070

Name of the Vulnerable Software and Affected Versions: PHPWiki Postnuke wiki module (affected versions not specified)

Description: A cross-site scripting issue allows remote attackers to execute script as other PHPWiki users via the pagename parameter in the API endpoint.

Recommendations: For the PHPWiki Postnuke wiki module, consider restricting access to the pagename parameter to minimize the risk of exploitation. Avoid using the pagename parameter in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.