Cross-site scripting (XSS) vulnerability in the DMOZGateway module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the topic parameter.

VULN-DEV:20011216 CSS in DMOZGateway ( php-nuke ) | URL:http://archives.neohapsis.com/archives/vuln-dev/2001-q4/0853.html