CVE-2007-1061

2007-02-22T00:28:00
ID CVE-2007-1061
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:36:00

Description

SQL injection vulnerability in index.php in Francisco Burzi PHP-Nuke 8.0 Final and earlier, when the "HTTP Referers" block is enabled, allows remote attackers to execute arbitrary SQL commands via the HTTP Referer header (HTTP_REFERER variable).