1732 matches found
PHP-Nuke Dance Music Module Index.PHP Local File Include Vulnerability
No description provided by source...
PHP-Nuke Recipe Module 1.3 - 'recipeid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27955/info The Recipe module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
PHP-Nuke 6.5 Addon Viewpage.PHP File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7191/info PHP-Nuke has been reported prone to a file disclosure vulnerability when using the viewpage.php addon. It has been reported that PHP-Nuke may disclose arbitrary web server readable files under certain...
PHP-Nuke 5.x/6.x/7.x Direct Script Access Security Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10447/info PHP-Nuke is affected by a direct script access security vulnerability. This issue is due to a failure to properly validate the location and name of the file being accessed. This issue will allow an attacker to...
PHP-Nuke DownloadsPlus Module - Arbitrary File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28919/info The DownloadsPlus module for PHP-Nuke is prone to a vulnerability that lets remote attackers upload and execute arbitrary code because the application fails to sanitize user-supplied input. This issue permits...
PHP-Nuke My_eGallery <= 2.7.9 - Remote SQL Injection Vulnerability
No description provided by source. Aria-Security Team http://Aria-Security.Net ----------------------------- Shoutz: Aura, Null, imm02tal, Kinglet, and our staff PHP-Nuke MyeGallery gid Remote SQL Injection Dork: inurl:modules.php?name=MyeGallery...
PHP-Nuke 6.x/7.0 'News' Module Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9605/info It has been reported that the PHP-Nuke module 'News' is prone to a cross-site scripting vulnerability. The issue arises due to the module failing to properly sanitize user-supplied information. This could allow...
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
No description provided by source. !/usr/bin/perl 0-Day PHP-Nuke = 8.1.0.3.5b Downloads Remote Blind SQL Injection Date: 2010.07.04 after 50 days the bug was discovered. Author/s: Dante90, WaRWolFz Crew Crew Members: 4lasthor, Andryxxx, Cod3, Gho5t, HeRtZ, N.o.3.X, RingZero, s3rg3770, Shades...
PHP-Nuke <= 7.8 (modules.php) SQL Injection Exploit
No description provided by source. / PHP-Nuke =7.8 SQL injection exploit need MySQL 4.0 coded by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru / // tested on 7.8 include stdio.h include string.h include sys/types.h include sys/socket.h include netinet/in.h include netdb.h include regex.h defi...
PHP-Nuke Downloads Module 'url' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33410/info The Downloads module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
PHP-Nuke 6.x/7.x Reviews Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuke is prone to multiple...
CVE-2014-3934
SQL injection vulnerability in the SubmitNews module for PHP-Nuke 8.3 allows remote attackers to execute arbitrary SQL commands via the topics parameter to modules.php...
Sql injection
SQL injection vulnerability in the SubmitNews module for PHP-Nuke 8.3 allows remote attackers to execute arbitrary SQL commands via the topics parameter to modules.php...
CVE-2014-3934
CVE-2014-3934 is a SQL injection vulnerability in the Submit_News module of PHP-Nuke 8.3, exploitable via topics[] in modules.php to execute arbitrary SQL. Impact is partial confidentiality/integrity/availability. Exploitation details are supported by NVD/RedHat entries; CIRCL shows an exploit on...
CVE-2014-3934
SQL injection vulnerability in the SubmitNews module for PHP-Nuke 8.3 allows remote attackers to execute arbitrary SQL commands via the topics parameter to modules.php...
PHP-Nuke Submit_News Component - SQL Injection
PHP-Nuke SubmitNews Component - SQL Injection source: https://www.securityfocus.com/bid/67656/info PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can exploit this issue to compromise the...
PHP-Nuke 'Submit_News' Component - SQL Injection
source: https://www.securityfocus.com/bid/67656/info PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can exploit this issue to compromise the application, access or modify data, or exploi...
PHP-Nuke 8.3 News SQL Injection
title : phpnuke 8.3 sql injection vulnerability Exploit Title: phpnuke 8.3 submit news module sql injection vulnerability Google Dork: inurl:modules.php?name=SubmitNews Date: 5/24/2014 Exploit Author: ali ahmady -- Iranian Researcher snip3rirathotmail.com Vendor Homepage: phpnuke.org Software Lin...
PHP-Nuke Web Links SQL Injection Vulnerability
PHP-Nuke Web Links suffers from a remote SQL injection vulnerability. PHP-Nuke moduleWeb Links - Sql Injection Vulnerabilty =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : email protected , email protected .:. Home :...
PHP-Nuke Web Links SQL Injection
PHP-Nuke moduleWeb Links - Sql Injection Vulnerabilty =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : https://www.phpnuke.org/ .:. Dork :...