Sign-up

ID

VAR-200412-0579


CVE

CVE-2004-2295


TITLE

PHP-Nuke Multiple Input Validation Vulnerabilities

Trust: 0.9

sources: BID: 10524 // CNNVD: CNNVD-200412-604

DESCRIPTION

SQL injection vulnerability in the Reviews module in PHP-Nuke 6.0 to 7.3 allows remote attackers to execute arbitrary SQL commands via the order parameter. PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuke is prone to multiple cross-site scripting vulnerabilities. These issues affect the 'Faq', 'Encyclopedia' and 'Reviews' modules. These cross-site scripting issues could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If a user follows the malicious link, the attacker-supplied code executes in the Web browser of the victim computer. PHP-Nuke is prone to an SQL Injection Vulnerability. Again the issue is due to a failure of the application to properly sanitize user-supplied input. As a result of this issue an attacker could modify the logic and structure of database queries. Finally a remote denial of service vulnerability is reported to exist in the score subsystem of the 'Review' module of PHP-Nuke, it is reported that a large number supplied as a value for a parameter passed to the 'Reviews' module will deny service to legitimate PHP-Nuke users

Trust: 1.26

sources: NVD: CVE-2004-2295 // BID: 10524 // VULHUB: VHN-10723

AFFECTED PRODUCTS

vendor:francisco burzimodel:php-nukescope:eqversion:6.7

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.0

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.2

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.0

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.6

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.3

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.5

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.1

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.9

Trust: 0.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.0_final

Trust: 0.6

vendor:franciscomodel:burzi php-nukescope:eqversion:7.3

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.2

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.1

Trust: 0.3

vendor:franciscomodel:burzi php-nuke finalscope:eqversion:7.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.9

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.7

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.6

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc3scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc2scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc1scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke finalscope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke betascope:eqversion:6.51

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.0

Trust: 0.3

sources: BID: 10524 // CNNVD: CNNVD-200412-604

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-2295
value: HIGH

Trust: 1.0

CNNVD: CNNVD-200412-604
value: HIGH

Trust: 0.6

VULHUB: VHN-10723
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2004-2295
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-10723
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-10723 // CNNVD: CNNVD-200412-604 // NVD: CVE-2004-2295

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-2295

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200412-604

TYPE

SQL injection

Trust: 0.6

sources: CNNVD: CNNVD-200412-604

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-10723

EXTERNAL IDS
db:BIDid:10524
Trust: 2.0
db:OSVDBid:7000
Trust: 1.7
db:SECUNIAid:11852
Trust: 1.7
db:NVDid:CVE-2004-2295
Trust: 1.7
db:CNNVDid:CNNVD-200412-604
Trust: 0.7
db:FULLDISCid:20040611 [WARAXE-2004-SA#032 - MULTIPLE SECURITY FLAWS IN PHPNUKE 6.X - 7.3]
Trust: 0.6
db:BUGTRAQid:20040611 [WARAXE-2004-SA#032 - MULTIPLE SECURITY FLAWS IN PHPNUKE 6.X - 7.3]
Trust: 0.6
db:XFid:16407
Trust: 0.6
db:EXPLOIT-DBid:24192
Trust: 0.1
db:SEEBUGid:SSVID-77925
Trust: 0.1
db:VULHUBid:VHN-10723
Trust: 0.1
sources:
            
            
            VULHUB: VHN-10723 // 
            
            
            
            BID: 10524 // 
            
            
            
            CNNVD: CNNVD-200412-604 // 
            
            
            
            NVD: CVE-2004-2295

REFERENCES
url:http://www.securityfocus.com/bid/10524
Trust: 1.7
url:http://www.securityfocus.com/archive/1/365865
Trust: 1.7
url:http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0310.html
Trust: 1.7
url:http://www.osvdb.org/7000
Trust: 1.7
url:http://secunia.com/advisories/11852
Trust: 1.7
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/16407
Trust: 1.1
url:http://xforce.iss.net/xforce/xfdb/16407
Trust: 0.6
url:http://www.irannuke.com/
Trust: 0.3
url:/archive/1/365865
Trust: 0.3
sources:
            
            
            VULHUB: VHN-10723 // 
            
            
            
            BID: 10524 // 
            
            
            
            CNNVD: CNNVD-200412-604 // 
            
            
            
            NVD: CVE-2004-2295

CREDITS
Discovery of these vulnerabilities is credited to Janek Vind <come2waraxe@yahoo.com>.
Trust: 0.9
sources:
            
            
            BID: 10524 // 
            
            
            
            CNNVD: CNNVD-200412-604

SOURCES
db:VULHUBid:VHN-10723
db:BIDid:10524
db:CNNVDid:CNNVD-200412-604
db:NVDid:CVE-2004-2295

LAST UPDATE DATE
2024-08-14T14:48:10.158000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-10723date:2017-07-11T00:00:00
db:BIDid:10524date:2004-06-11T00:00:00
db:CNNVDid:CNNVD-200412-604date:2005-10-20T00:00:00
db:NVDid:CVE-2004-2295date:2017-07-11T01:31:46.373

SOURCES RELEASE DATE
db:VULHUBid:VHN-10723date:2004-12-31T00:00:00
db:BIDid:10524date:2004-06-11T00:00:00
db:CNNVDid:CNNVD-200412-604date:2004-12-31T00:00:00
db:NVDid:CVE-2004-2295date:2004-12-31T05:00:00