Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 03/05/2001 Updated: 05/09/2008

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

bb_smilies.php and bbcode_ref.php in PHP-Nuke 4.4 allows remote malicious users to read arbitrary files and gain PHP administrator privileges by inserting a null character and .. (dot dot) sequences into a malformed username argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
francisco burzi php-nuke 4.0.4
francisco burzi php-nuke 4.4

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2001-02/0425.html https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0320

Vulnerability Summary

References

Vulmon Search

About

Products

Connect