Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpnuke vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2003-1545
Absolute path traversal vulnerability in nukestyles.com viewpage.php addon for PHP-Nuke allows remote malicious users to read arbitrary files via a full pathname in the file parameter. NOTE: This was originally reported as an issue in PHP-Nuke 6.5, but this is an independent addo...
Nukestyles Viewpage
Phpnuke Nukestyles Viewpage Module
1 EDB exploit
7.5
CVSSv2
CVE-2008-3151
SQL injection vulnerability in the 4ndvddb 0.91 module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the id parameter in a show_dvd action.
Phpnuke 4ndvddb 0.91
Warpspeed 4ndvddb 0.91
1 EDB exploit
7.5
CVSSv2
CVE-2001-0899
Network Tools 0.2 for PHP-Nuke allows remote malicious users to execute commands on the server via shell metacharacters in the $hostinput variable.
Phpnuke Php-nuke
Rick Fournier Network Tools 0.2
1 EDB exploit
7.5
CVSSv2
CVE-2001-1495
network_query.php in Network Query Tool 1.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in the target parameter.
Freshmeat Network Query Tool Phpnuke 1.0
Freshmeat Network Query Tool 1.0
6.8
CVSSv2
CVE-2008-2020
The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 and 8.1, (2) my123tkShop e-Commerce-Suite (aka 123tkShop) 0.9.1, (3) phpMyBitTorrent 1.2.2, (4) TorrentFlux 2.3, (5) e107 0.7.11, (6) WebZE 0.5.9, (7) Open Media Collectors Database (aka OpenDb) 1.5.0b4, and (...
My123tkshop E-commerce-suite 0.9.1
Phpmybittorrent Phpmybittorrent 1.2.2
Webze Webze 0.5.9
E107 E107 0.7.11
Labgab Labgab 1.1
Phpnuke Php-nuke 7.0
Torrentflux Project Torrentflux 2.3
Phpnuke Php-nuke 8.1
Opendb Opendb 1.5.0
7.5
CVSSv2
CVE-2006-0679
SQL injection vulnerability in index.php in the Your_Account module in PHP-Nuke 7.8 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username variable (Nickname field).
Francisco Burzi Php-nuke Ev 7.8
7.5
CVSSv2
CVE-2005-0862
Multiple PHP remote file inclusion vulnerabilities in PHPOpenChat 3.0.1 and previous versions allow remote malicious users to execute arbitrary PHP code via the phpbb_root_path parameter to (1) poc_loginform.php or (2) phpbb/poc.php, the poc_root_path parameter to (3) phpbb/poc.p...
Phpopenchat Phpopenchat 2.3.4
Phpopenchat Phpopenchat 3.0.1
3 EDB exploits
5
CVSSv2
CVE-2007-3332
Directory traversal vulnerability in Satellite.php in Satel Lite for PhpNuke allows remote malicious users to read arbitrary files via a .. (dot dot) sequence in the name parameter in a modload action.
Php-nuke Satel Lite
1 EDB exploit
7.5
CVSSv2
CVE-2006-0163
SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 allows remote malicious users to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792...
Francisco Burzi Php-nuke Ev 7.7 R1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4