Nukejokes

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:adam_webb:nukejokes:2.0_beta:*:*:*:*:*:*:*

part: a version: 2.0_beta update: *

VendorAdam Webb (386274b9-3f72-5dee-8470-a48e12dbaa3b)
ProductNukejokes (58193757-c11c-5c7f-9091-44d276d97929)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2004-2009 not_vulnerable 2026-06-03 14:26:46.110503 Details available
NukeJokes 1.7 and 2 Beta allows remote attackers to obtain the full path of the server via (1) a direct call to mainfunctions.php, (2) an invalid jokeid parameter in a JokeView function or (3) an invalid cat parameter in a CatView function, which reveals the path in a PHP error message.
Published: 2005-05-10T04:00:00.000Z
Updated: 2024-08-08T01:15:01.157Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2004-2008 vulnerable 2026-06-03 14:26:46.110199 Details available
SQL injection vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to execute arbitrary SQL via the jokeid parameter.
Published: 2005-05-10T04:00:00.000Z
Updated: 2024-08-08T01:15:01.164Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2004-2007 vulnerable 2026-06-03 14:26:46.109774 Details available
Cross-site scripting (XSS) vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to inject arbitrary HTML or web script via the (1) cat parameter in a CatView function or (2) jokeid parameter in a JokeView function.
Published: 2005-05-10T04:00:00.000Z
Updated: 2024-08-08T01:15:01.115Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.