Vulnerabilities (CVE)

Filtered by vendor Ewebsite Subscribe
Filtered by product Eweather
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-1348 1 Ewebsite 1 Eweather 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in index.php in the eWebsite eWeather (Weather) module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the chart parameter to modules.php.