CVE-2001-1334
published 2002-05-19CVE-2001-1334: Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator privileges to read arbitrary files by creating a block and…
PriorityP423medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.09%
86.1th percentile
Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator privileges to read arbitrary files by creating a block and specifying the target file as the source URL.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpslash | phpslash | — | — |
| phpslash | phpslash | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2001-05/0126.htmlhttp://marc.info/?l=phpslash&m=99029398904419&w=2http://www.iss.net/security_center/static/9990.phphttp://www.securityfocus.com/bid/2724http://archives.neohapsis.com/archives/bugtraq/2001-05/0126.htmlhttp://marc.info/?l=phpslash&m=99029398904419&w=2http://www.iss.net/security_center/static/9990.phphttp://www.securityfocus.com/bid/2724
2002-05-19
Published