← CVECheck
HomeVulnerabilities

CVE-2004-1957 — LOW severity vulnerability (Multiple cross-site scripting (XSS) vulnerabilities in PostN)

Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web script or HTML via the (1) lid and query parameters to the Downloads module, (2) query parameter to the Web_links module, or (3) hlpfile parameter to openwindow.php.

CVE IDCVE-2004-1957
SeverityLOW
CVSS score2.6
CVSS vectorAV:N/AC:H/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2004-04-21
Last modified2026-04-16
DescriptionMultiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web script or HTML via the (1) lid and query parameters to the Downloads module, (2) query parameter to the Web_links module, or (3) hlpfile parameter to openwindow.php.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →