CVE-2009-0302
CVE-2009-0302 describes a SQL injection in the PHP-Nuke Downloads module affecting version 8.0 up to 8.1.0.3.5b and earlier. The underlying issue is an unparameterized input path in the Add operation for modules.php, allowing a remote authenticated user to modify the database by injecting SQL com...