CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

CVE•added 2008/03/12 5:0 p.m.•47 views

CVE-2008-1298

CVE-2008-1298 describes a SQL injection in the Hadith module for PHP-Nuke, exploitable via the cat parameter in a viewcat action to modules.php. The underlying root cause is unsafely concatenated SQL that allows remote attackers to alter or disclose database data. The NVD entry lists a CVSS v2 ba...

7.5CVSS8.4AI score0.00571EPSS

Exploits1References6Affected Software2