phpnuke 'lid' Parameter SQL Injection Vulnerability

phpnuke 'lid' Parameter SQL Injection Vulnerability

An attacker can exploit the issue using a browser.

The following example data is available:

http://www.example.com/modules.php?name=Downloads&d_op=viewdownloadeditorial&lid=(sql)