Vulnerabilities > CVE-2001-0383 - Remote Ad Banner URL Change vulnerability in PHP Nuke

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
francisco-burzi
exploit available

Summary

banners.php in PHP-Nuke 4.4 and earlier allows remote attackers to modify banner ad URLs by directly calling the Change operation, which does not require authentication.

Vulnerable Configurations

Part Description Count
Application
Francisco_Burzi
1

Exploit-Db

descriptionPHP Nuke 1.0/2.5/3.0/4.x Remote Ad Banner URL Change Vulnerability. CVE-2001-0383. Webapps exploit for php platform
idEDB-ID:20729
last seen2016-02-02
modified2001-04-02
published2001-04-02
reporterJuan Diego
sourcehttps://www.exploit-db.com/download/20729/
titlePHP Nuke 1.0/2.5/3.0/4.x - Remote Ad Banner URL Change Vulnerability