cbcvebase.
CVE-2008-6728
published 2009-04-20

CVE-2008-6728: SQL injection vulnerability in the Sections module in PHP-Nuke, probably before 8.0, allows remote attackers to execute arbitrary SQL commands via the artid…

PriorityP335high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.13%
62.2th percentile
SQL injection vulnerability in the Sections module in PHP-Nuke, probably before 8.0, allows remote attackers to execute arbitrary SQL commands via the artid parameter in a printpage action to modules.php.

Affected

25 ranges
VendorProductVersion rangeFixed in
phpnukephp-nuke<= 7.9
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
phpnukephp-nuke
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.