BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
PHP-Nuke 6.0 (& 6.5?) : Serious SQL Injection Security Holes
Mar 06 2003 02:29PM
Frog Man (leseulfrog hotmail com)
Informations :
°°°°°°°°°°°°°°
Language : PHP
Website : http://www.phpnuke.org
Versions : 6.0 (& 6.5?)
Modules : Members_List, Your_Account
Problem : SQL Injection
PHP Configuration : This will work if magic_quotes_gpc=OFF.
PHP Code/Location :
°°°°°°°°°°°°°°°°°°°
/modules/Members_List/index.php :
...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Informations :
°°°°°°°°°°°°°°
Language : PHP
Website : http://www.phpnuke.org
Versions : 6.0 (& 6.5?)
Modules : Members_List, Your_Account
Problem : SQL Injection
PHP Configuration : This will work if magic_quotes_gpc=OFF.
PHP Code/Location :
°°°°°°°°°°°°°°°°°°°
/modules/Members_List/index.php :
...
[ more ]