Sensitive Server Information Disclosure in Nuked-Klan 1.3b

Sensitive Server Information Disclosure in Nuked-Klan 1.3b

CVE-2003-1371 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Nuked-Klan 1.3b, and possibly earlier versions, allows remote attackers to obtain sensitive server information via an op parameter set to phpinfo for the (1) Team, (2) News, or (3) Liens modules.

Learn more about our Cis Benchmark Audit For Server Software.