CVE-2005-4074

CF_Nuke <= 4.6 - Directory Traversal via Sector or Page Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4074. PoCs published by r0t.

AI-analyzed exploit summary The code describes a local file inclusion vulnerability in CF_Nuke due to unsanitized user input in the 'sector' and 'page' parameters. Exploitation allows unauthorized file viewing or local ColdFusion code execution if Sandbox Security is disabled.

Description

Directory traversal vulnerability in index.cfm in CF_Nuke 4.6 and earlier, when Sandbox Security is disabled, allows remote attackers to include arbitrary local .cfm files via a .. (dot dot) in the (1) sector or (2) page parameters.

Exploits (1)

exploitdb WRITEUP VERIFIED
by r0t · textwebappscfm
https://www.exploit-db.com/exploits/26766

The code describes a local file inclusion vulnerability in CF_Nuke due to unsanitized user input in the 'sector' and 'page' parameters. Exploitation allows unauthorized file viewing or local ColdFusion code execution if Sandbox Security is disabled.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: CF_Nuke 4.6 and prior
No auth needed
Prerequisites: Sandbox Security disabled for the target directory
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17939
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23539
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15777
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2795
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21505

Scores

EPSS 0.0296
EPSS Percentile 85.4%

Details

Status published
Products (1)
mycfnuke/cf_nuke 4.6
Published Dec 08, 2005
Tracked Since Feb 18, 2026