Vulnerabilities > CVE-2003-1210 - Unspecified vulnerability in Francisco Burzi PHP-Nuke
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN francisco-burzi
exploit available
Summary
Multiple SQL injection vulnerabilities in the Downloads module for PHP-Nuke 5.x through 6.5 allow remote attackers to execute arbitrary SQL commands via the (1) lid parameter to the getit function or the (2) min parameter to the search function.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 |
Exploit-Db
| description | PHP-Nuke 6.5 Multiple Downloads Module SQL Injection Vulnerabilities. CVE-2003-1210. Webapps exploit for php platform |
| id | EDB-ID:22597 |
| last seen | 2016-02-02 |
| modified | 2003-05-13 |
| published | 2003-05-13 |
| reporter | Albert Puigsech Galicia |
| source | https://www.exploit-db.com/download/22597/ |
| title | PHP-Nuke 6.5 - Multiple Downloads Module SQL Injection Vulnerabilities |
References
- http://archives.neohapsis.com/archives/bugtraq/2003-05/0147.html
- http://archives.neohapsis.com/archives/bugtraq/2003-05/0147.html
- http://www.securityfocus.com/bid/7588
- http://www.securityfocus.com/bid/7588
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11984
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11984