SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL commands via the HTTP Referer header.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-06-01
Updated
2017-08-17
SQL injection vulnerability in the Sections module in PHP-Nuke, probably before 8.0, allows remote attackers to execute arbitrary SQL commands via the artid parameter in a printpage action to modules.php.
Max CVSS
7.5
EPSS Score
0.10%
Published
2009-04-20
Updated
2018-10-11
2 vulnerabilities found