2 matches found
CVE-2002-1242
CVE-2002-1242 describes an SQL injection vulnerability in PHP-Nuke prior to 6.0 that allows remote authenticated users to modify the database and gain privileges via the bio parameter in modules.php. Root cause: unvalidated input in the bio field enables injection into SQL statements. Affected so...
CVE-2002-1242
SQL injection vulnerability in PHP-Nuke before 6.0 allows remote authenticated users to modify the database and gain privileges via the "bio" argument to modules.php...