3 matches found
CVE-2008-1308
The CVE-2008-1308 entry concerns the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke, where a SQL injection vulnerability exists in the ViewCatg action (id_catg parameter in modules.php). The cited sources indicate remote SQL command execution is possible, though exploitation details, affected...
Sql injection
SQL injection vulnerability in modules.php in the NukeC 2.1 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the idcatg parameter in a ViewCatg action...
CVE-2008-0934
SQL injection vulnerability in modules.php in the NukeC 2.1 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the idcatg parameter in a ViewCatg action...