CVE-2003-0279 — SQL Injection in Burzi Php-nuke

3 documents3 sources

Severity

2.6LOWNVD

EPSS

0.0%

top 95.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Francisco Burzi Php-nuke

Timeline

PublishedJun 16

Latest updateApr 29

Description

Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5.x through 6.5 allows remote attackers to steal sensitive information via numeric fields, as demonstrated using (1) the viewlink function and cid parameter, or (2) index.php.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

▶NVDfrancisco_burzi/php-nuke5.0, 6.0+1

🔴Vulnerability Details

GHSA

GHSA-9vqr-6495-qrxf: Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5↗2022-04-29

▶

CVEList

CVE-2003-0279: Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5↗2003-05-14

▶