Title: PHP Nuke AddOn Arbitrary File Disclosure Vulnerability
Severity: MODERATE
Description:
PHP Nuke AddOn is a set of modules that can add functionality to the popular PHP-Nuke website creation/maintenance tool.
An issue exists with PHPNuke AddOn which allows local attackers to break out of webroot and display arbitrary files.
When PHPNuke AddOn theme files attempt to check the content of a block, it will execute any file it finds. If a user creates a block which specifies an arbitrary file on the host then PHPNuke AddOn will attempt to open it. The user would have to create this script in wwwroot.
This issue may be exploitable remotely if the attacker has a way to upload files to the host, via anonymous ftp or some other avenue.
Affected Products:
- Francisco Burzi PHP-Nuke 1.0.0
- Francisco Burzi PHP-Nuke 2.5.0
- Francisco Burzi PHP-Nuke 3.0.0
- Francisco Burzi PHP-Nuke 4.0.0
- Francisco Burzi PHP-Nuke 4.3.0
- Francisco Burzi PHP-Nuke 4.4.0
- Francisco Burzi PHP-Nuke 4.4.1a
- Francisco Burzi PHP-Nuke 5.0.0
- Francisco Burzi PHP-Nuke 5.0.1
- nukeaddon.com PHP Nuke AddOn 2.0.5
- nukeaddon.com PHP Nuke AddOn 3.0.1beta
- nukeaddon.com PHP Nuke AddOn 4.0.0beta
- nukeaddon.com PHP Nuke AddOn 4.0.1beta
- nukeaddon.com PHP Nuke AddOn 5.0.0
- nukeaddon.com PHP Nuke AddOn 5.0.0 RC1
- nukeaddon.com PHP Nuke AddOn 5.0.04
- nukeaddon.com PHP Nuke AddOn 5.0.1beta
References:
- Francisco Burzi: PHP-Nuke Product Page
- nukeaddon.com: PHP Nuke AddOn Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
