CVE-2004-1956

PostNuke 0.7.2.6 allows remote attackers to gain information via a direct HTTP request to files in the (1) includes/blocks directory, (2) pnadodb directory, (3) NS-NewUser module, (4) NS-Your_Account, (5) NS-LostPassword module, or (6) NS-User module which reveals the path to the web server in a PHP error message.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:postnuke_software_foundation:postnuke:0.726:*:*:*:*:*:*:*

Information

Published : 2004-04-20 21:00

Updated : 2017-07-10 18:31


NVD link : CVE-2004-1956

Mitre link : CVE-2004-1956


JSON object : View

Advertisement

dedicated server usa

Products Affected

postnuke_software_foundation

  • postnuke