Multimedia : Security Vulnerabilities, CVEs,
Directory traversal vulnerability in index.php in the Dance Music module for phpNuke, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in an ACCEPT_FILE array parameter to modules.php.
Max CVSS
6.8
EPSS Score
4.40%
Published
2007-09-26
Updated
2018-10-15
1 vulnerabilities found