Sensitive Information Disclosure in PHP-Nuke Video Gallery Module 0.1 Beta 5

Sensitive Information Disclosure in PHP-Nuke Video Gallery Module 0.1 Beta 5

CVE-2004-1971 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

modules.php in PHP-Nuke Video Gallery Module 0.1 Beta 5 allows remote attackers to gain sensitive information via an HTTP request with an invalid (1) catid or (2) clipid parameter, which reveals the full path in an error message.

Learn more about our Web Application Penetration Testing UK.