2 matches found
CVE-2007-1720
Directory traversal vulnerability in addressbook.php in the Addressbook 1.2 module for PHP-Nuke allows remote attackers to include and execute arbitrary local files via a .. dot dot in the modulename parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file...
CVE-2007-1720
CVE-2007-1720 affects the Addressbook 1.2 module for PHP-Nuke. Vulnerability: directory traversal via .. in the module_name parameter allows remote attackers to include and execute arbitrary local files, demonstrated by injecting PHP sequences into an Apache log file. Public exploits are listed (...