{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T01:33:05.635","vulnerabilities":[{"cve":{"id":"CVE-2001-1524","sourceIdentifier":"cve@mitre.org","published":"2001-12-31T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in PHP-Nuke 5.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) uname parameter in user.php, (2) ttitle, letter and file parameters in modules.php, (3) subject, story and storyext parameters in submit.php, (4) upload parameter in admin.php and (5) fname parameter in friend.php."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:3.0:*:*:*:*:*:*:*","matchCriteriaId":"4CB52E20-9A87-4CE4-9E75-B0833F083845"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:4.0:*:*:*:*:*:*:*","matchCriteriaId":"4E87A3E6-935F-4569-8B5F-70A88442FD4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:4.3:*:*:*:*:*:*:*","matchCriteriaId":"D7E4C570-648F-48EF-B965-16C5878A0CBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:4.4:*:*:*:*:*:*:*","matchCriteriaId":"EC3CBB92-6A11-4B5B-A910-B0287AB12846"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:4.4.1a:*:*:*:*:*:*:*","matchCriteriaId":"4C17255B-64E1-4DFF-8C21-8BB1D78A5256"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:5.0:*:*:*:*:*:*:*","matchCriteriaId":"93B755A9-694E-49FA-9068-353203AF9965"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:5.0.1:*:*:*:*:*:*:*","matchCriteriaId":"CA0B88AD-CACF-4E48-A4B1-313FFE32D058"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:5.1:*:*:*:*:*:*:*","matchCriteriaId":"FF4C3F85-A23C-40B9-9B0F-564E7C254AA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:5.2:*:*:*:*:*:*:*","matchCriteriaId":"4EAF55C4-F0A7-4A36-B203-83670D58483F"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:5.2a:*:*:*:*:*:*:*","matchCriteriaId":"E3ED3BFC-C8CF-4537-832C-0D00400AC064"},{"vulnerable":true,"criteria":"cpe:2.3:a:francisco_burzi:php-nuke:5.3.1:*:*:*:*:*:*:*","matchCriteriaId":"C94B62CA-8D34-4B37-8748-1FE64F0299DF"}]}]}],"references":[{"url":"http://online.securityfocus.com/archive/1/245691","source":"cve@mitre.org"},{"url":"http://online.securityfocus.com/archive/1/245875","source":"cve@mitre.org"},{"url":"http://online.securityfocus.com/archive/82/243545","source":"cve@mitre.org"},{"url":"http://online.securityfocus.com/archive/82/246603","source":"cve@mitre.org"},{"url":"http://prdownloads.sourceforge.net/phpnuke/PHP-Nuke-5.5.tar.gz","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.iss.net/security_center/static/7654.php","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/3609","source":"cve@mitre.org"},{"url":"http://online.securityfocus.com/archive/1/245691","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://online.securityfocus.com/archive/1/245875","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://online.securityfocus.com/archive/82/243545","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://online.securityfocus.com/archive/82/246603","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://prdownloads.sourceforge.net/phpnuke/PHP-Nuke-5.5.tar.gz","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.iss.net/security_center/static/7654.php","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/3609","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}