Directory traversal vulnerability in data/compatible.php in the Nuke Mobile Entertainment 1 addon for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the module_name parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
massimo chioni mobile entertainment module 1 |