PHP-Nuke CVE-2004-1998 Information Disclosure Vulnerability

PHP-Nuke CVE-2004-1998 Information Disclosure Vulnerability

PHP-Nuke is prone to a information disclosure vulnerability. The Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to gain sensitive information via an invalid show parameter to modules.php, which reveals the full path in a PHP error message.