Vulnerabilities > CVE-2004-1830 - Multiple vulnerability in Francisco Burzi PHP-Nuke 6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
error.php in Error Manager 2.1 for PHP-Nuke 6.0 allows remote attackers to obtain sensitive information via an invalid (1) language, (2) newlang, or (3) lang parameter, which leaks the pathname in a PHP error message.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | PHP-Nuke Error Manager Module 2.1 error.php language Variable Path Disclosure. CVE-2004-1830 . Webapps exploit for php platform |
id | EDB-ID:23844 |
last seen | 2016-02-02 |
modified | 2004-03-18 |
published | 2004-03-18 |
reporter | Janek Vind |
source | https://www.exploit-db.com/download/23844/ |
title | PHP-Nuke Error Manager Module 2.1 error.php language Variable Path Disclosure |