Vulnerabilities > CVE-2006-4190 - Local File Include vulnerability in PHP-Nuke Autohtml Module 2.0

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
php-nuke
exploit available
NVD
Published: 2006-08-17
Updated: 2018-10-17

Summary

Directory traversal vulnerability in autohtml.php in the AutoHTML module for PHP-Nuke allows local users to include arbitrary files via a .. (dot dot) in the name parameter for a modload operation.

Vulnerable Configurations

Part Description Count
Application
Php-Nuke
1

Exploit-Db

descriptionPHP-Nuke 2.0 AutoHTML Module Local File Include Vulnerability. CVE-2006-4190. Webapps exploit for php platform
idEDB-ID:28388
last seen2016-02-03
modified2006-08-15
published2006-08-15
reporterMosT3mR
sourcehttps://www.exploit-db.com/download/28388/
titlePHP-Nuke 2.0 AutoHTML Module Local File Include Vulnerability

References