PHPNuke 7.7 EV Search Module SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16186/info PHPNuke EV is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

Sql injection

SQL injection vulnerability in the search module modules/Search/index.php of PHPNuke EV 7.7 -R1 allows remote attackers to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792...

[SA18394] PHPNuke EV "query" SQL Injection Vulnerability

TITLE: PHPNuke EV "query" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA18394 VERIFY ADVISORY: http://secunia.com/advisories/18394/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: PHPNuke EV 7.x http://secunia.com/product/6767/ DESCRIPTION: A...

PHP-Nuke 7.7 EV Search Module - SQL Injection

PHP-Nuke 7.7 EV Search Module - SQL Injection source: https://www.securityfocus.com/bid/16186/info PHPNuke EV is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...

PHPNukeEV77.txt

PHPNuke EV 7.7 'search' module 'query' variable SQL injection Vendor url: http://nukevolution.com/ exploit available:yes vendor notify:yes advisore:http://lostmon.blogspot.com/2006/01/ phpnuke-ev-77-search-module-query.html PHPNuke EV 7.7 have a flaw which can be exploited by malicious people to...