|
|
|
|
| |
PHP-Nuke is a Web portal and online community system which includes Web-based administration, surveys, access statistics, user customizable boxes, a themes manager for registered users, friendly administration GUI with graphic topic manager, the ability to edit or delete stories, an option to delete comments, a moderation system, referer tracking, integrated banner ad system, search engine, backend/headlines generation (RSS/RDF format), Web directory like Yahoo, events manager, and support for 20+ languages.
PHP-Nuke is published under the terms of the GNU General Public License. It is a very popular program with lots and lots of installations. It is included as one of the packages in Debian GNU/Linux and one of FreeBSD's ports.
A path disclosure vulnerability has been found in the product allowing remote attackers to reveal the web server's true path. |
| |
Credit:
The information has been provided by Ing. Bernardo Lopez.
|
| |
Vulnerable systems:
* PHP-Nuke version 6.0
Exploit:
http://target.com/modules.php?name=Your_Account&op=userinfo&uname=
The true path will be revealed if the module "your account" is enabled.
|
|
|
|
|
