Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: PHP Nuke <= 7.8 Multiple SQL Injections
Sep 14 2005 04:43AM
Paul Laudanski (zx castlecops com)
On 12 Sep 2005 r.verton (at) gmail (dot) com [email concealed] wrote:
> Software: PHP Nuke 7.8
> Type: SQL Injections
> Risk: High
> PHP Nuke 7.8 is prone to multiple SQL injection vulnerabilities.
> These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries....
[ more ]
Copyright 2010, SecurityFocus