CVE-2004-1971

Name of the Vulnerable Software and Affected Versions PHP-Nuke Video Gallery Module version 0.1 Beta 5

Description The issue allows remote attackers to gain sensitive information via an HTTP request with an invalid catid or clipid parameter, which reveals the full path in an error message.

Recommendations For PHP-Nuke Video Gallery Module version 0.1 Beta 5, consider validating and sanitizing the catid and clipid parameters to prevent the disclosure of sensitive information. As a temporary workaround, restrict access to the modules.php file to minimize the risk of exploitation.