Vulnerabilities > CVE-2000-0745 - Unspecified vulnerability in Francisco Burzi PHP-Nuke 1.0/2.5

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
francisco-burzi
exploit available
NVD
Published: 2000-10-20
Updated: 2008-09-05

Summary

admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter.

Vulnerable Configurations

Part Description Count
Application
Francisco_Burzi
2

Exploit-Db

descriptionPHP-Nuke 1.0/2.5 Administrative Privileges Vulnerability. CVE-2000-0745. Webapps exploit for php platform
idEDB-ID:20158
last seen2016-02-02
modified2000-08-21
published2000-08-21
reporterbruj0
sourcehttps://www.exploit-db.com/download/20158/
titlePHP-Nuke 1.0/2.5 - Administrative Privileges Vulnerability

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/24302/RFP2101.txt
idPACKETSTORM:24302
last seen2016-12-05
published2001-02-14
reporterrain forest puppy
sourcehttps://packetstormsecurity.com/files/24302/RFP2101.txt.html
titleRFP2101.txt

References