cbcvebase.
CVE-2005-3792
published 2005-11-24

CVE-2005-3792: Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to…

PriorityP352high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
44.29%
98.6th percentile
Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to execute arbitrary SQL commands, as demonstrated via the query parameter in a stories type.

Affected

8 ranges
VendorProductVersion rangeFixed in
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke
francisco_burziphp-nuke_ev

Detection & IOCsextracted from sources · hover to see the quote

pathmodules/Search/index.php
urlmodules.php?name=Search
  • Monitor POST requests to modules.php?name=Search for SQL injection patterns in the 'query' parameter, as the search field is the injection vector.
  • The exploit uses a distinctive User-Agent string 'Internet Explorer 6.0 [SR]' — flag HTTP requests carrying this exact User-Agent string targeting PHP-Nuke Search endpoints.
  • ·CVE-2005-3792 and CVE-2006-0163 are explicitly noted as distinct vulnerabilities both affecting PHP-Nuke Search modules but in different versions/variants; ensure detections are scoped appropriately and not conflated.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.