Vulnerabilities > Phpnuke > PHP Nuke > 8.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-03-14 | CVE-2007-1450 | SQL-Injection vulnerability in Php-Nuke SQL injection vulnerability in mainfile.php in PHP-Nuke 8.0 and earlier allows remote attackers to execute arbitrary SQL commands in the Top or News module via the lang parameter. | 7.5 |
2007-03-14 | CVE-2007-1449 | Local File Include and SQL Injection vulnerability in PHP-Nuke Lang Parameter Directory traversal vulnerability in mainfile.php in PHP-Nuke 8.0 and earlier allows remote attackers to read arbitrary files via a .. network phpnuke | 4.3 |