Vulnerabilities > CVE-2004-1528 - Unspecified vulnerability in ROB Sutton PHP-Nuke Event Calendar 2.13
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The Event Calendar module 2.13 for PHP-Nuke allows remote attackers to gain sensitive information via an HTTP request to (1) config.php, (2) index.php, or (3) submit.php, which reveal the full path in an error message.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://marc.info/?l=bugtraq&m=110064626111756&w=2
- http://marc.info/?l=bugtraq&m=110064626111756&w=2
- http://secunia.com/advisories/13213
- http://secunia.com/advisories/13213
- http://www.securityfocus.com/bid/11693
- http://www.securityfocus.com/bid/11693
- http://www.waraxe.us/index.php?modname=sa&id=38
- http://www.waraxe.us/index.php?modname=sa&id=38
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18105
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18105