PHP-Nuke Software Detection

High Nessus Network Monitor Plugin ID 1591

Synopsis

The remote host is running a copy of PHP-Nuke.

Description

The remote host is running a copy of PHP-Nuke. Given the history of this package, we recommend that you do not use it, as security was not important to the authors of the software. The author of PHP-Nuke (Francisco Burzi) even started to rewrite the program from scratch, given the huge number of vulnerabilities.

Solution

Do not use this software.

See Also

http://www.phpnuke.org/modules.php?name=News&file=article&sid=5640

Plugin Details

Severity: High

ID: 1591

File Name: 1591.prm

Family: Web Servers

Published: 2004/08/20

Modified: 2016/01/15

Dependencies: 1442

Nessus ID: 11236

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

CVSSv3

Base Score: 7.3

Temporal Score: 7.3

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:H/RL:U/RC:X

Reference Information

CVE: CVE-2000-0745, CVE-2001-0001, CVE-2001-0321, CVE-2001-0383, CVE-2001-0899, CVE-2001-0900, CVE-2001-1032, CVE-2001-0292, CVE-2001-0320, CVE-2001-0854, CVE-2001-0911, CVE-2001-1025, CVE-2002-0206, CVE-2002-0483, CVE-2002-1242, CVE-2002-2032, CVE-2003-1435, CVE-2003-1400, CVE-2001-1521, CVE-2001-1524, CVE-2002-1803, CVE-2005-0433, CVE-2005-0434

BID: 12561, 6446, 6465, 6503, 6750, 6887, 6890, 7031, 7060, 7078, 7079, 1592, 2422, 2424, 2431, 2544, 3106, 3107, 3114, 3149, 3361, 3510, 3567, 3609, 3889, 3906, 4302, 4333, 5476, 5788, 5796, 5799, 5953, 6088, 6244, 6399, 6400, 6406, 6409, 3554

OSVDB: 1521, 1781, 20230, 20231, 20232, 20233, 20234, 3412, 3932, 524, 53993, 53994, 5501, 5512, 5513, 59313, 6238, 6239, 6240, 6241, 6242, 6243, 6244, 643, 677, 713