PHP-Nuke Splatt Forum 3.2 Module - Full Path Disclosure

Author: Rynho Zeros Web
type: webapps
platform: php
port: 
date_added: 2003-03-12  
date_updated: 2012-10-30  
verified: 1  
codes:   
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22349.txt  

source: https://www.securityfocus.com/bid/7080/info

The Splatt Forum module for PHPNuke has been reported prone to a vulnerability which, when exploited, may disclose sensitive path information to a remote attacker.

An attacker could use the information gathered in this manner to mount further attacks against the host.

This vulnerability was reported to affect Splatt Forums 3.2 other versions may also be affected.


http://www.example.com/modules.php?op=modload&name=Forums&file=attachment&AtchOp=show