CVE Vulnerabilities

CVE-2002-0483

Published: Aug 12, 2002 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

index.php for PHP-Nuke 5.4 and earlier allows remote attackers to determine the physical pathname of the web server when the file parameter is set to index.php, which triggers an error message that leaks the pathname.

Affected Software

Name Vendor Start Version End Version
Php-nuke Francisco_burzi 5.0 5.0
Php-nuke Francisco_burzi 5.0.1 5.0.1
Php-nuke Francisco_burzi 5.1 5.1
Php-nuke Francisco_burzi 5.2 5.2
Php-nuke Francisco_burzi 5.2a 5.2a
Php-nuke Francisco_burzi 5.3.1 5.3.1
Php-nuke Francisco_burzi 5.4 5.4

References