Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
francisco burzi vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-0907
SQL injection vulnerability in PHP-Nuke prior to 7.8 Patched 3.2 allows remote malicious users to execute arbitrary SQL commands via encoded /%2a (/*) sequences in the query string, which bypasses regular expressions that are intended to protect against SQL injection, as demonstr...
Francisco Burzi Php-nuke 7.8
7.5
CVSSv2
CVE-2006-0908
PHP-Nuke 7.8 Patched 3.2 allows remote malicious users to bypass SQL injection protection mechanisms via /%2a (/*) sequences with the "ad_click" word in the query string, as demonstrated via the kala parameter.
Francisco Burzi Php-nuke 7.8 Patched 3.2
7.5
CVSSv2
CVE-2006-0163
SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 allows remote malicious users to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792...
Francisco Burzi Php-nuke Ev 7.7 R1
1 EDB exploit
7.5
CVSSv2
CVE-2006-0679
SQL injection vulnerability in index.php in the Your_Account module in PHP-Nuke 7.8 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username variable (Nickname field).
Francisco Burzi Php-nuke Ev 7.8
4.3
CVSSv2
CVE-2004-1913
Cross-site scripting (XSS) vulnerability in modules.php in NukeCalendar 1.1.a, as used in PHP-Nuke, allows remote malicious users to inject arbitrary web script or HTML via the eid parameter.
Francisco Burzi Php-nuke 8.0 Final
Shiba-design Nukecalendar 1.1.a
1 EDB exploit
7.5
CVSSv2
CVE-2004-1914
SQL injection vulnerability in modules.php in NukeCalendar 1.1.a, as used in PHP-Nuke, allows remote malicious users to execute arbitrary SQL commands via the eid parameter.
Francisco Burzi Php-nuke 8.0 Final
Shiba-design Nukecalendar 1.1.a
1 EDB exploit
5
CVSSv2
CVE-2004-1912
The (1) modules.php, (2) block-Calendar.php, (3) block-Calendar1.php, (4) block-Calendar_center.php scripts in NukeCalendar 1.1.a, as used in PHP-Nuke, allow remote malicious users to obtain sensitive information via a URL with an invalid argument, which reveals the full path in ...
Francisco Burzi Php-nuke 8.0 Final
Shiba-design Nukecalendar 1.1.a
4 EDB exploits
7.5
CVSSv2
CVE-2009-1842
SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote malicious users to execute arbitrary SQL commands via the HTTP Referer header.
Phpnuke Php-nuke 8.0
1 EDB exploit
7.5
CVSSv2
CVE-2011-1480
SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the chng_uid parameter.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
4.3
CVSSv2
CVE-2011-1481
Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) sender_name or (2) sender_email parameter in a Feedback action to modules.php.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »