Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PostNuke 0.750 and 0.760RC3 allows remote attackers to obtain sensitive information via a direct request to (1) theme.php or (2) Xanthia.php in the Xanthia module, (3) user.php, (4) thelang.php, (5) text.php, (6) html.php, (7) menu.php, (8) finclude.php, or (9) button.php in the pnblocks directory in the Blocks module, (10) config.php in the NS-Multisites (aka Multisites) module, or (11) xmlrpc.php, which reveals the path in an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PostNuke漏洞
Vulnerability Description
PostNuke 0.750和0.760RC3允许远程攻击者通过直接请求(1)theme.php或(2)Xanthia模块中的Xanthia.php,(3)user.php,(4)thelang.php,(5)text.php,(6)html.php,(7)menu.php,(8)finclude.php或者(9)在Blocks模块中的pnblocks目录中的button.php,(10)在NS-Multisites(又称Multisites)模块中的config.php或者(11)xmlrpc.php,
CVSS Information
N/A
Vulnerability Type
N/A