Vulnerabilities > CVE-2001-1334 - Unspecified vulnerability in PHPslash 0.5.3.2/0.6.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN phpslash
exploit available
Summary
Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator privileges to read arbitrary files by creating a block and specifying the target file as the source URL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | PHPSlash 0.5.3 2/0.6.1 URL Block Arbitrary File Disclosure Vulnerability. CVE-2001-1334 . Webapps exploit for php platform |
| id | EDB-ID:20848 |
| last seen | 2016-02-02 |
| modified | 2001-04-15 |
| published | 2001-04-15 |
| reporter | tobozo tagada |
| source | https://www.exploit-db.com/download/20848/ |
| title | PHPSlash 0.5.3 2/0.6.1 URL Block Arbitrary File Disclosure Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0126.html
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0126.html
- http://marc.info/?l=phpslash&m=99029398904419&w=2
- http://marc.info/?l=phpslash&m=99029398904419&w=2
- http://www.iss.net/security_center/static/9990.php
- http://www.iss.net/security_center/static/9990.php
- http://www.securityfocus.com/bid/2724
- http://www.securityfocus.com/bid/2724