CVE-2001-0383
PHP-Nuke < 4.4 - Unauthenticated Banner URL Modification via Direct Change Operation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2001-0383. PoCs published by Juan Diego.
AI-analyzed exploit summary This is a writeup describing a vulnerability in PHP-Nuke's banner ad feature, allowing an attacker to modify the destination URL of ad banners via a crafted querystring. No actual exploit code is provided, only a description of the attack vector.
Description
banners.php in PHP-Nuke 4.4 and earlier allows remote attackers to modify banner ad URLs by directly calling the Change operation, which does not require authentication.
Exploits (1)
This is a writeup describing a vulnerability in PHP-Nuke's banner ad feature, allowing an attacker to modify the destination URL of ad banners via a crafted querystring. No actual exploit code is provided, only a description of the attack vector.