Computer Security
[EN] no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
SecurityVulns ID:8297
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. PHP-Nuke: directory traversal in autohtml.php and autohtml0.php allows to obtain password hashes. By requesting non-existant file it's possible to disclosure installation directory.
Affected:PHPNUK : PHP-Nuke 8.1
 MICROLOGIN : Micro Login System 1.0
Original documentdocumentGuns_(at), Micro Login System v1.0 (userpwd.txt) Password Disclosure Vulnerability (28.10.2007)
 documentMustLive, Local File Inclusion and Information Leakage vulnerabilities in PHP-Nuke (28.10.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod