Vulnerabilities > CVE-2001-1334 - Unspecified vulnerability in PHPslash 0.5.3.2/0.6.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator privileges to read arbitrary files by creating a block and specifying the target file as the source URL.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | PHPSlash 0.5.3 2/0.6.1 URL Block Arbitrary File Disclosure Vulnerability. CVE-2001-1334 . Webapps exploit for php platform |
id | EDB-ID:20848 |
last seen | 2016-02-02 |
modified | 2001-04-15 |
published | 2001-04-15 |
reporter | tobozo tagada |
source | https://www.exploit-db.com/download/20848/ |
title | PHPSlash 0.5.3 2/0.6.1 URL Block Arbitrary File Disclosure Vulnerability |