CVE-2003-1210

2003-12-31T05:00:00
ID CVE-2003-1210
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:29:00

Description

Multiple SQL injection vulnerabilities in the Downloads module for PHP-Nuke 5.x through 6.5 allow remote attackers to execute arbitrary SQL commands via the (1) lid parameter to the getit function or the (2) min parameter to the search function.