3D Fantasy Cubes - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application 3D Fantasy Cubes published at the 'play' market has multiple vulnerabilities...

CVE-2005-1001

PHP-Nuke 7.6 allows remote attackers to obtain sensitive information via direct requests to 1 the Surveys module with the file parameter set to comments or 2 3D-Fantasy/theme.php, which leaks the full pathname of the web server in a PHP error message...

CVE-2005-1001

PHP-Nuke 7.6 allows remote attackers to obtain sensitive information via direct requests to 1 the Surveys module with the file parameter set to comments or 2 3D-Fantasy/theme.php, which leaks the full pathname of the web server in a PHP error message...

CVE-2005-1001

PHP-Nuke 7.6 is affected by CVE-2005-1001, where remote attackers can obtain sensitive information. The vulnerability arises from direct requests to the Surveys module (file parameter set to comments) or to 3D-Fantasy/theme.php, which causes a PHP error message that leaks the full server pathname...