cbcvebase.
CVE-2004-2296
published 2004-12-31

CVE-2004-2296: The preview_review function in the Reviews module in PHP-Nuke 6.0 to 7.3, when running on Windows systems, allows remote attackers to obtain sensitive…

PriorityP410medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.71%
74.4th percentile
The preview_review function in the Reviews module in PHP-Nuke 6.0 to 7.3, when running on Windows systems, allows remote attackers to obtain sensitive information via an invalid date parameter, which generates an error message.

Affected

15 ranges
VendorProductVersion rangeFixed in
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.