Vulnerabilities > CVE-2004-2018 - Unspecified vulnerability in Francisco Burzi PHP-Nuke

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
francisco-burzi
exploit available

Summary

PHP remote file inclusion vulnerability in index.php in Php-Nuke 6.x through 7.3 allows remote attackers to execute arbitrary PHP code by modifying the modpath parameter to reference a URL on a remote web server that contains the code.

Exploit-Db

descriptionPHP-Nuke 6.x/7.x Modpath Parameter Potential File Include Vulnerability. CVE-2004-2018. Webapps exploit for php platform
idEDB-ID:24127
last seen2016-02-02
modified2004-05-17
published2004-05-17
reporterwaraxe
sourcehttps://www.exploit-db.com/download/24127/
titlePHP-Nuke 6.x/7.x Modpath Parameter Potential File Include Vulnerability