A-Ty writes PHP-NukeIn PHPNuke 7.8 - 7.9 exists bug in modules.php . By GET or POST request remote attacker can make specially crafted parameter to see the files on the victim server.

PHPNuke 7.8 - 7.9 Remote Directory Traversal Posted on Wednesday, October 19 @ 12:12:19 CDT by chatserv PHP-NukeIn PHPNuke 7.8 - 7.9 exists bug in modules.php . By GET or POST request remote attacker can make specially crafted parameter to see the files on the victim server. In our case in php.ini the magic_quotes_gpc must be off.
More information : http://securityreason.com/achievement_securityalert/25 Exploit : http://securityreason.com/achievement_exploitalert/3 SecurityFix : http://securityreason.com/patch/4 Nuke Patched 3.1 manual fix: Open mainfile.php and change the stripos_clone function to:
// We want to use the function stripos,
// but thats only available since PHP5.
// So we cloned the function... if(!function_exists('stripos')) { function stripos_clone($haystack, $needle, $offset=0) { $return = strpos(strtoupper($haystack), strtoupper($needle), $offset); if ($return === false) { return false; } else { return true; } } } else {
// But when this is PHP5, we use the original function function stripos_clone($haystack, $needle, $offset=0) { $return = stripos($haystack, $needle, $offset=0); if ($return === false) { return false; } else { return true; } } }