|
|
CVE Reference: CVE-2005-3792 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-3792 |
|
|
Description: Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to execute arbitrary SQL commands, as demonstrated via the query parameter in a stories type. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/23079 ST 1015651 1015215 SAID Secunia Advisory: SA17543 OSVDB 20866 MISC http://www.waraxe.us/advisory-46.html http://securityreason.com/achievement_exploitalert/5 FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0454.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/425508/100/0/threaded http://www.securityfocus.com/archive/1/425627/100/0/threaded http://marc.theaimsgroup.com/?l=bugtraq&m=113210758511323&w=2 BID 15421 |
|
| Return to the previous page. |
