2 matches found
CVE-2007-6376
Directory traversal vulnerability in autohtml.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the filename parameter, a different vector than CVE-2006-4190. NOTE: the provenance of this information is unknown; the detail...
CVE-2007-6376
CVE-2007-6376 describes a directory traversal vulnerability in the PHP-Nuke 8.0 AutoHTML module (autohtml.php). The root cause is that the filename parameter can be manipulated with a …/ path, enabling local file inclusion and arbitrary code execution on the server. The vulnerability affects PHP-...