VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2297

CVE-2004-2297

Description

PHP-Nuke Reviews module vulnerable to DoS via large score parameter, consuming CPU and memory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

PHP-Nuke Reviews module vulnerable to DoS via large score parameter, consuming CPU and memory.

Vulnerability

The Reviews module in PHP-Nuke versions 6.0 through 7.3 is susceptible to a denial of service vulnerability. This issue arises from insufficient sanitization of user-supplied data, specifically when a large, out-of-range value is provided for the score parameter.

Exploitation

An unauthenticated remote attacker can exploit this vulnerability by sending a crafted request to the Reviews module, providing an excessively large numerical value for the score parameter. This can be done by targeting URLs such as modules.php?name=Reviews&rop=savecomment&id=1&uname=f00bar&score=999999999999999999999999 [1].

Impact

Successful exploitation of this vulnerability leads to a denial of service. The application will consume excessive CPU and memory resources attempting to process the invalid score, rendering the service unavailable to legitimate users.

Mitigation

There is no specific patched version or release date mentioned in the available references. Users are advised to consult vendor advisories for potential workarounds or updated information. This vulnerability is not listed on the KEV catalog.

References
  1. PHP-Nuke 6.x/7.x - Multiple Input Validation Vulnerabilities

AI Insight generated on Jun 3, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

16
  • PHP-Nuke/PHP Nuke16 versions
    cpe:2.3:a:francisco_burzi:php-nuke:6.0:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:francisco_burzi:php-nuke:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_beta1:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_final:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.6:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:6.9:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.0_final:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:francisco_burzi:php-nuke:7.3:*:*:*:*:*:*:*
    • (no CPE)range: 6.0 - 7.3

Patches

0

No patches discovered yet.

Vulnerability mechanics

Root cause

"The Reviews module fails to properly sanitize a large, out-of-range score parameter, leading to excessive resource consumption."

Attack vector

A remote attacker can send a crafted request to the Reviews module with an excessively large value for the 'score' parameter. This can be achieved by navigating to a specific URL, such as the one shown in the reference write-up, which targets the 'savecomment' or 'Yes' operations within the Reviews module. The large score value is then processed by the application, causing it to consume significant CPU and memory resources.

Affected code

The vulnerability resides within the 'Reviews' module of PHP-Nuke versions 6.0 to 7.3. Specifically, the 'score' subsystem is affected. The reference write-up provides example URLs that interact with the 'modules.php' script, targeting operations like 'savecomment' and 'Yes' within the 'Reviews' module, demonstrating the code paths involved.

What the fix does

The advisory does not provide details on a specific patch or fix. However, it indicates that the vulnerability is due to insufficient sanitization of user-supplied data in the 'score' parameter of the 'Reviews' module. Remediation would involve implementing proper input validation to ensure the 'score' parameter remains within acceptable numerical bounds, preventing excessive resource allocation.

Preconditions

  • inputThe 'score' parameter must be provided with a very large, out-of-range numerical value.
  • networkThe attacker must be able to send HTTP requests to the vulnerable PHP-Nuke installation.

Reproduction

http://www.example.com/nuke73/modules.php?name=Reviews&rop=savecomment&id=1&uname=f00bar&score=999999999999999999999999 http://www.example.com/nuke73/modules.php?name=Reviews&rop=Yes&title=f001&text=f002&score=9&email=f00@bar.org&reviewer=f00&score=999

Generated on Jun 3, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

7

News mentions

0

No linked articles in our index yet.