← CVECheck
HomeVulnerabilities

CVE-2003-1468 — MEDIUM severity vulnerability (The Web_Links module in PHP-Nuke 6.0 through 6.5 final allow)

The Web_Links module in PHP-Nuke 6.0 through 6.5 final allows remote attackers to obtain the full web server path via an invalid cid parameter that is non-numeric or null, which leaks the pathname in an error message.

CVE IDCVE-2003-1468
SeverityMEDIUM
CVSS score4.3
CVSS vectorAV:N/AC:M/Au:N/C:P/I:N/A:N
CWECWE-200
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionThe Web_Links module in PHP-Nuke 6.0 through 6.5 final allows remote attackers to obtain the full web server path via an invalid cid parameter that is non-numeric or null, which leaks the pathname in an error message.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →