Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
francisco burzi vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-0372
Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 7.9 allow remote malicious users to execute arbitrary SQL commands via (1) the active parameter in admin/modules/modules.php; the (2) ad_class, (3) imageurl, (4) clickurl, (5) ad_code, or (6) position parameter in...
Francisco Burzi Php-nuke 7.9
7.5
CVSSv2
CVE-2005-4715
Multiple SQL injection vulnerabilities in modules.php in PHP-Nuke 7.8, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) name, (2) sid, and (3) pid parameters in a POST request, which bypasses security checks that are pe...
Francisco Burzi Php-nuke 7.8
7.5
CVSSv2
CVE-2006-0679
SQL injection vulnerability in index.php in the Your_Account module in PHP-Nuke 7.8 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username variable (Nickname field).
Francisco Burzi Php-nuke Ev 7.8
7.5
CVSSv2
CVE-2006-0163
SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 allows remote malicious users to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792...
Francisco Burzi Php-nuke Ev 7.7 R1
1 EDB exploit
5
CVSSv2
CVE-2004-1912
The (1) modules.php, (2) block-Calendar.php, (3) block-Calendar1.php, (4) block-Calendar_center.php scripts in NukeCalendar 1.1.a, as used in PHP-Nuke, allow remote malicious users to obtain sensitive information via a URL with an invalid argument, which reveals the full path in ...
Francisco Burzi Php-nuke 8.0 Final
Shiba-design Nukecalendar 1.1.a
4 EDB exploits
7.5
CVSSv2
CVE-2004-1914
SQL injection vulnerability in modules.php in NukeCalendar 1.1.a, as used in PHP-Nuke, allows remote malicious users to execute arbitrary SQL commands via the eid parameter.
Francisco Burzi Php-nuke 8.0 Final
Shiba-design Nukecalendar 1.1.a
1 EDB exploit
4.3
CVSSv2
CVE-2004-1913
Cross-site scripting (XSS) vulnerability in modules.php in NukeCalendar 1.1.a, as used in PHP-Nuke, allows remote malicious users to inject arbitrary web script or HTML via the eid parameter.
Francisco Burzi Php-nuke 8.0 Final
Shiba-design Nukecalendar 1.1.a
1 EDB exploit
7.5
CVSSv2
CVE-2009-1842
SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote malicious users to execute arbitrary SQL commands via the HTTP Referer header.
Phpnuke Php-nuke 8.0
1 EDB exploit
7.5
CVSSv2
CVE-2011-1480
SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the chng_uid parameter.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
4.3
CVSSv2
CVE-2011-1481
Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) sender_name or (2) sender_email parameter in a Feedback action to modules.php.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »