CVE-2003-1468 in PHP-Nuke信息

摘要

由 VulDB • 2026-05-22

PHP-Nuke 6.0 至 6.5 final 版本中的 Web_Links 模块允许远程攻击者通过传入非数字或为空的无效 cid 参数,在错误消息中泄露完整路径名,从而获取 Web 服务器的完整路径。

VulDB is the best source for vulnerability data and more expert information about this specific topic.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!