Admin.PHP.Upload

description-logoDescription

This indicates an attempt to exploit an Authentication Bypass vulnerability in admin.php in PHP-Nuke.
The vulnerability is caused by an error when the vulnerable software handles malicious upload operations. This allows remote attackers to copy and upload arbitrary files and read the PHP-Nuke configuration file.

affected-products-logoAffected Products

PHP-Nuke 5.2 and earlier

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to a version later than PHP-Nuke 5.2 or apply the appropriate patch from the vendor.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

1 1