Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
francisco burzi php-nuke 6.5 beta1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-1547
Cross-site scripting (XSS) vulnerability in block-Forums.php in the Splatt Forum module for PHP-Nuke 6.x allows remote malicious users to inject arbitrary web script or HTML via the subject parameter.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.5 Rc1
NA
CVE-2003-1210
Multiple SQL injection vulnerabilities in the Downloads module for PHP-Nuke 5.x up to and including 6.5 allow remote malicious users to execute arbitrary SQL commands via the (1) lid parameter to the getit function or the (2) min parameter to the search function.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.5 Rc1
1 EDB exploit
NA
CVE-2003-1468
The Web_Links module in PHP-Nuke 6.0 up to and including 6.5 final allows remote malicious users to obtain the full web server path via an invalid cid parameter that is non-numeric or null, which leaks the pathname in an error message.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.5 Rc1
1 EDB exploit
NA
CVE-2004-2354
SQL injection vulnerability in 4nGuestbook 0.92 for PHP-Nuke 6.5 up to and including 6.9 allows remote malicious users to modify SQL statements via the entry parameter to modules.php, which can also facilitate cross-site scripting (XSS) attacks when MySQL errors are triggered.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Warpspeed 4nguestbook 0.92
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 6.5 Rc1
NA
CVE-2004-1839
MS Analysis module 2.0 for PHP-Nuke allows remote malicious users to obtain sensitive information via a direct request to (1) browsers.php, (2) mstrack.php, or (3) title.php, which reveal the full path in a PHP error message.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 6.5 Rc1
NA
CVE-2004-1840
Multiple cross-site scripting (XSS) vulnerabilities in MS Analysis module 2.0 for PHP-Nuke allows remote malicious users to inject arbitrary web script or HTML via the (1) screen parameter to modules.php, (2) module_name parameter to title.php, (3) sortby parameter to modules.php...
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 6.5 Rc1
NA
CVE-2004-0265
Cross-site scripting (XSS) vulnerability in modules.php for Php-Nuke 6.x-7.1.0 allows remote malicious users to execute arbitrary script as other users via URL-encoded (1) title or (2) fname parameters in the News or Reviews modules.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 6.5 Rc1
1 EDB exploit
NA
CVE-2004-0266
SQL injection vulnerability in the "public message" capability (public_message) for Php-Nuke 6.x to 7.1.0 allows remote malicious users to obtain the administrator password via the c_mid parameter.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 6.5 Rc1
1 EDB exploit
NA
CVE-2006-0676
Cross-site scripting (XSS) vulnerability in header.php in PHP-Nuke 6.0 to 7.8 allows remote malicious users to inject arbitrary web script or HTML via the pagetitle parameter.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.2
Francisco Burzi Php-nuke 7.8
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 7.3
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 7.6
Francisco Burzi Php-nuke 7.9
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 7.7
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 6.5 Rc1
1 EDB exploit
NA
CVE-2004-1930
Cross-site scripting (XSS) vulnerability in the cookiedecode function in mainfile.php for PHP-Nuke 6.x up to and including 7.2, when themes are used, allows remote malicious users to inject arbitrary web script or HTML via a base64-encoded user parameter or cookie.
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.2
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 6.5 Rc1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »