Admin.PHP.Upload
Description
This indicates an attempt to exploit an Authentication Bypass vulnerability in admin.php in PHP-Nuke.
The vulnerability is caused by an error when the vulnerable software handles malicious upload operations. This allows remote attackers to copy and upload arbitrary files and read the PHP-Nuke configuration file.
Affected Products
PHP-Nuke 5.2 and earlier
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to a version later than PHP-Nuke 5.2 or apply the appropriate patch from the vendor.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |