PHP-Nuke 7.3, and other products that use the PHP-Nuke codebase such as the Nuke Cops betaNC PHP-Nuke Bundle, OSCNukeLite 3.1, and OSC2Nuke 7x do not properly use the eregi() PHP function with $_SERVER[PHP_SELF] to identify the calling script, which allows remote attackers to directly access scripts, obtain path information via a PHP error message, and possibly gain access, as demonstrated using an HTTP request that contains the admin.php string.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Php-nuke | Francisco_burzi | 5.0 (including) | 5.0 (including) |
| Php-nuke | Francisco_burzi | 5.0.1 (including) | 5.0.1 (including) |
| Php-nuke | Francisco_burzi | 5.1 (including) | 5.1 (including) |
| Php-nuke | Francisco_burzi | 5.2 (including) | 5.2 (including) |
| Php-nuke | Francisco_burzi | 5.2a (including) | 5.2a (including) |
| Php-nuke | Francisco_burzi | 5.3.1 (including) | 5.3.1 (including) |
| Php-nuke | Francisco_burzi | 5.4 (including) | 5.4 (including) |
| Php-nuke | Francisco_burzi | 5.5 (including) | 5.5 (including) |
| Php-nuke | Francisco_burzi | 5.6 (including) | 5.6 (including) |
| Php-nuke | Francisco_burzi | 6.0 (including) | 6.0 (including) |
| Php-nuke | Francisco_burzi | 6.5 (including) | 6.5 (including) |
| Php-nuke | Francisco_burzi | 6.5_beta1 (including) | 6.5_beta1 (including) |
| Php-nuke | Francisco_burzi | 6.5_final (including) | 6.5_final (including) |
| Php-nuke | Francisco_burzi | 6.5_rc1 (including) | 6.5_rc1 (including) |
| Php-nuke | Francisco_burzi | 6.5_rc2 (including) | 6.5_rc2 (including) |
| Php-nuke | Francisco_burzi | 6.5_rc3 (including) | 6.5_rc3 (including) |
| Php-nuke | Francisco_burzi | 6.6 (including) | 6.6 (including) |
| Php-nuke | Francisco_burzi | 6.7 (including) | 6.7 (including) |
| Php-nuke | Francisco_burzi | 6.9 (including) | 6.9 (including) |
| Php-nuke | Francisco_burzi | 7.0 (including) | 7.0 (including) |
| Php-nuke | Francisco_burzi | 7.0_final (including) | 7.0_final (including) |
| Php-nuke | Francisco_burzi | 7.1 (including) | 7.1 (including) |
| Php-nuke | Francisco_burzi | 7.2 (including) | 7.2 (including) |
| Php-nuke | Francisco_burzi | 7.3 (including) | 7.3 (including) |
| Osc2nuke | Oscommerce | 7x_1.0 (including) | 7x_1.0 (including) |
| Betanc_php-nuke | Paul_laudanski | bundle (including) | bundle (including) |