← Back

CVE-2004-1998

nvd nist
Published: May 5, 2004Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

The Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to gain sensitive information via an invalid show parameter to modules.php, which reveals the full path in a PHP error message.

Affected (9)

Francisco Burzi
1 product
Php Nuke
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Francisco Burzi
Php Nuke
Version 6.0
Php Nuke
Version 6.5
Php Nuke
Version 6.6
Php Nuke
Version 6.7
Php Nuke
Version 6.8
Php Nuke
Version 6.9
Php Nuke
Version 7.0
Php Nuke
Version 7.1
Php Nuke
Version 7.2

References (4)

Source: cve@mitre.org
Source: cve@mitre.org
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory

Timeline

No history available yet.