CVE-2004-1829

Name of the Vulnerable Software and Affected Versions Gijza.net Error Manager version 2.1 for PHP-Nuke 6.0

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via specific parameters, including the pagetitle or error parameters, as well as certain parameters in the error log.

Recommendations For Gijza.net Error Manager version 2.1, consider disabling the error log and restricting access to the error.php file until a patch is available. Avoid using the pagetitle and error parameters in the affected API endpoint until the issue is resolved.