CVE-2006-5525
published 2006-10-26CVE-2006-5525: Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and earlier allows remote attackers to conduct SQL injection attacks via (1) "/**/UNION " or…
PriorityP430medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
1.11%
61.9th percentile
Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and earlier allows remote attackers to conduct SQL injection attacks via (1) "/**/UNION " or (2) " UNION/**/" sequences, which are not rejected by the protection mechanism, as demonstrated by a SQL injection via the eid parameter in a search action in the Encyclopedia module in modules.php.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpnuke | php-nuke | <= 7.9 | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
| phpnuke | php-nuke | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
CWE
Improper Input Validation
mitre_cwe
CWE-20 Improper Input Validation
CWE-20: Improper Input Validation
The product receives input or data, but it does
not validate or incorrectly validates that the input has the
properties that are required to process the data safely and
correctly.
Input validation is a frequently-used technique
for checking potentially dangerous inputs in order to
ensure that the inputs are safe for processing within the
code, or when communicating with other components. Input can consist of: raw data - strings, numbers, parameters, file contents, etc. metadata - information about the raw data, such as headers or size Data can be simple or structured. Structured data
can be composed of many nested layers, composed of
combinations of metadata and raw data, with other simple or
structured data. Many properties of raw data or metadata may n
CAPEC
SQL Injection
mitre_capec
[HIGH] SQL Injection
CAPEC-66: SQL Injection
This attack exploits target software that constructs SQL statements based on user input. An attacker crafts input strings so that when the target software constructs SQL statements based on the input, the resulting SQL statement performs actions other than those the application intended. SQL Injection results from failure of the application to appropriately validate input.
Execution Flow:
Step 1 [Explore]: [Survey application] The attacker first takes an inventory of the functionality exposed by the application.
Technique: Spider web sites for all available links
Technique: Sniff network communications with application using a utility such as WireShark.
Step 2 [Experiment]: [Determine user-controllable input susceptible to injection] Determine the user-controllabl
http://secunia.com/advisories/22511http://www.neosecurityteam.net/index.php?action=advisories&id=27http://www.securityfocus.com/bid/20674http://www.vupen.com/english/advisories/2006/4149https://exchange.xforce.ibmcloud.com/vulnerabilities/29705https://www.exploit-db.com/exploits/2617http://secunia.com/advisories/22511http://www.neosecurityteam.net/index.php?action=advisories&id=27http://www.securityfocus.com/bid/20674http://www.vupen.com/english/advisories/2006/4149https://exchange.xforce.ibmcloud.com/vulnerabilities/29705https://www.exploit-db.com/exploits/2617
2006-10-26
Published