Sign-up

ID

VAR-200412-0581


CVE

CVE-2004-2297


TITLE

PHP-Nuke Multiple Input Validation Vulnerabilities

Trust: 0.9

sources: BID: 10524 // CNNVD: CNNVD-200412-815

DESCRIPTION

The Reviews module in PHP-Nuke 6.0 to 7.3 allows remote attackers to cause a denial of service (CPU and memory consumption) via a large, out-of-range score parameter. PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuke is prone to multiple cross-site scripting vulnerabilities. These issues affect the 'Faq', 'Encyclopedia' and 'Reviews' modules. These cross-site scripting issues could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If a user follows the malicious link, the attacker-supplied code executes in the Web browser of the victim computer. PHP-Nuke is prone to an SQL Injection Vulnerability. Again the issue is due to a failure of the application to properly sanitize user-supplied input. The problem presents itself when SQL syntax is passed through the a parameter of the 'Reviews' module. As a result of this issue an attacker could modify the logic and structure of database queries. A vulnerability exists in the Reviews module of PHP-Nuke versions 6.0 to 7.3

Trust: 1.26

sources: NVD: CVE-2004-2297 // BID: 10524 // VULHUB: VHN-10725

AFFECTED PRODUCTS

vendor:francisco burzimodel:php-nukescope:eqversion:6.7

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.0

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.2

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.6

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.3

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_rc2

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_rc3

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.1

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.9

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.0_final

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_final

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.0

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_rc1

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.5_beta1

Trust: 1.0

vendor:franciscomodel:burzi php-nukescope:eqversion:7.3

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.2

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.1

Trust: 0.3

vendor:franciscomodel:burzi php-nuke finalscope:eqversion:7.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:7.0

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.9

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.7

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.6

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc3scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc2scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke rc1scope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke finalscope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nuke betascope:eqversion:6.51

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.5

Trust: 0.3

vendor:franciscomodel:burzi php-nukescope:eqversion:6.0

Trust: 0.3

sources: BID: 10524 // CNNVD: CNNVD-200412-815 // NVD: CVE-2004-2297

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-2297
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200412-815
value: MEDIUM

Trust: 0.6

VULHUB: VHN-10725
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2004-2297
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-10725
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-10725 // CNNVD: CNNVD-200412-815 // NVD: CVE-2004-2297

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-2297

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200412-815

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-200412-815

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-10725

EXTERNAL IDS
db:BIDid:10524
Trust: 2.0
db:OSVDBid:7002
Trust: 1.7
db:OSVDBid:7003
Trust: 1.7
db:SECUNIAid:11852
Trust: 1.7
db:NVDid:CVE-2004-2297
Trust: 1.7
db:CNNVDid:CNNVD-200412-815
Trust: 0.7
db:FULLDISCid:20040611 [WARAXE-2004-SA#032 - MULTIPLE SECURITY FLAWS IN PHPNUKE 6.X - 7.3]
Trust: 0.6
db:BUGTRAQid:20040611 [WARAXE-2004-SA#032 - MULTIPLE SECURITY FLAWS IN PHPNUKE 6.X - 7.3]
Trust: 0.6
db:XFid:16409
Trust: 0.6
db:SEEBUGid:SSVID-77926
Trust: 0.1
db:EXPLOIT-DBid:24193
Trust: 0.1
db:VULHUBid:VHN-10725
Trust: 0.1
sources:
            
            
            VULHUB: VHN-10725 // 
            
            
            
            BID: 10524 // 
            
            
            
            CNNVD: CNNVD-200412-815 // 
            
            
            
            NVD: CVE-2004-2297

REFERENCES
url:http://www.securityfocus.com/bid/10524
Trust: 1.7
url:http://www.securityfocus.com/archive/1/365865
Trust: 1.7
url:http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0310.html
Trust: 1.7
url:http://www.osvdb.org/7002
Trust: 1.7
url:http://www.osvdb.org/7003
Trust: 1.7
url:http://secunia.com/advisories/11852
Trust: 1.7
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/16409
Trust: 1.1
url:http://xforce.iss.net/xforce/xfdb/16409
Trust: 0.6
url:http://www.irannuke.com/
Trust: 0.3
url:/archive/1/365865
Trust: 0.3
sources:
            
            
            VULHUB: VHN-10725 // 
            
            
            
            BID: 10524 // 
            
            
            
            CNNVD: CNNVD-200412-815 // 
            
            
            
            NVD: CVE-2004-2297

CREDITS
Discovery of these vulnerabilities is credited to Janek Vind <come2waraxe@yahoo.com>.
Trust: 0.9
sources:
            
            
            BID: 10524 // 
            
            
            
            CNNVD: CNNVD-200412-815

SOURCES
db:VULHUBid:VHN-10725
db:BIDid:10524
db:CNNVDid:CNNVD-200412-815
db:NVDid:CVE-2004-2297

LAST UPDATE DATE
2024-08-14T14:48:10.129000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-10725date:2017-07-11T00:00:00
db:BIDid:10524date:2004-06-11T00:00:00
db:CNNVDid:CNNVD-200412-815date:2005-10-20T00:00:00
db:NVDid:CVE-2004-2297date:2017-07-11T01:31:46.483

SOURCES RELEASE DATE
db:VULHUBid:VHN-10725date:2004-12-31T00:00:00
db:BIDid:10524date:2004-06-11T00:00:00
db:CNNVDid:CNNVD-200412-815date:2004-12-31T00:00:00
db:NVDid:CVE-2004-2297date:2004-12-31T05:00:00