← CVECheck
HomeVulnerabilities

CVE-2004-1818 — MEDIUM severity vulnerability (Cross-site scripting (XSS) vulnerability in nmimage.php in 4)

Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to execute arbitrary script as other users by injecting arbitrary script into the z parameter.

CVE IDCVE-2004-1818
SeverityMEDIUM
CVSS score6.8
CVSS vectorAV:N/AC:M/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-03-15
Last modified2026-04-16
DescriptionCross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to execute arbitrary script as other users by injecting arbitrary script into the z parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →