PHP Nuke Security Advisory: Web Server Risk Due To Exploited Flaw

Hundreds of thousands of websites may be at risk after hackers discovered a vulnerability in a popular web server program. Users running PHP Nuke, a free open source tool for database-based websites, were put on red alert yesterday when it was . . . Hundreds of thousands of websites may be at risk after hackers discovered a vulnerability in a popular web server program. Users running PHP Nuke, a free open source tool for database-based websites, were put on red alert yesterday when it was discovered that hackers were exploiting a recently discovered flaw in the code to take control of servers.

The glitch exists in all versions of PHP Nuke and allows unauthorised users to copy files to and from the web server and possibly gain control of the machine.

There are over 22,000 users registered at the program's PHPNuke.org website but it is thought that there may be hundreds of thousands of sites running the vulnerable software.

The link for this article located at VNUnet is no longer available.