CVE-2003-1370

Name of the Vulnerable Software and Affected Versions Nuked-Klan version 1.2b

Description The issue allows remote attackers to inject arbitrary HTML or web script via several fields, including the Author field in the Guestbook module, the Titre or Pseudo fields in the Forum module, or "La Tribune Libre" in the Shoutbox module.

Recommendations For Nuked-Klan version 1.2b, consider restricting access to the Guestbook, Forum, and Shoutbox modules until a fix is available. As a temporary workaround, avoid using the Author, Titre, and Pseudo fields in the respective modules to minimize the risk of exploitation.