CVE-2005-3792
published 2005-11-24CVE-2005-3792: Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to…
PriorityP352high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
44.29%
98.6th percentile
Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to execute arbitrary SQL commands, as demonstrated via the query parameter in a stories type.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke | — | — |
| francisco_burzi | php-nuke_ev | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor POST requests to modules.php?name=Search for SQL injection patterns in the 'query' parameter, as the search field is the injection vector. ↗
- →The exploit uses a distinctive User-Agent string 'Internet Explorer 6.0 [SR]' — flag HTTP requests carrying this exact User-Agent string targeting PHP-Nuke Search endpoints. ↗
- ·CVE-2005-3792 and CVE-2006-0163 are explicitly noted as distinct vulnerabilities both affecting PHP-Nuke Search modules but in different versions/variants; ensure detections are scoped appropriately and not conflated. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v65h-7qg2-v645: Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7
ghsa_unreviewed·2022-05-01
CVE-2005-3792 [HIGH] GHSA-v65h-7qg2-v645: Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7
Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to execute arbitrary SQL commands, as demonstrated via the query parameter in a stories type.
GHSA
GHSA-pp6v-675r-4xp9: SQL injection vulnerability in the search module (modules/Search/index
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2006-0163 [HIGH] GHSA-pp6v-675r-4xp9: SQL injection vulnerability in the search module (modules/Search/index
SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 allows remote attackers to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0454.htmlhttp://marc.info/?l=bugtraq&m=113210758511323&w=2http://secunia.com/advisories/17543/http://securityreason.com/achievement_exploitalert/5http://securitytracker.com/id?1015215http://securitytracker.com/id?1015651http://www.osvdb.org/20866http://www.securityfocus.com/archive/1/425508/100/0/threadedhttp://www.securityfocus.com/archive/1/425627/100/0/threadedhttp://www.securityfocus.com/bid/15421http://www.vupen.com/english/advisories/2005/2446http://www.waraxe.us/advisory-46.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/23079http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0454.htmlhttp://marc.info/?l=bugtraq&m=113210758511323&w=2http://secunia.com/advisories/17543/http://securityreason.com/achievement_exploitalert/5http://securitytracker.com/id?1015215http://securitytracker.com/id?1015651http://www.osvdb.org/20866http://www.securityfocus.com/archive/1/425508/100/0/threadedhttp://www.securityfocus.com/archive/1/425627/100/0/threadedhttp://www.securityfocus.com/bid/15421http://www.vupen.com/english/advisories/2005/2446http://www.waraxe.us/advisory-46.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/23079
2005-11-24
Published