Signature Detail

HTTP: PHP-Nuke Multiple Files Path Disclosure (2)

This signature detects attempts to exploit a known vulnerability in the PHPNuke 6.0 Package. Attackers can bypass the modules.php wrapper script and access the php scripts directly to obtain sensitive information.

Extended Description

An attacker could potentially cause an error condition in PHPNuke that causes it to display a PHP error, disclosing the physical filesystem path of the affected web site.

References

• URL: http://securityvulns.com/docs3884.html