Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpnuke php-nuke 7.0 vulnerabilities and exploits
(subscribe to this query)
515
VMScore
CVE-2006-5525
Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and previous versions allows remote malicious users to conduct SQL injection attacks via (1) "/**/UNION " or (2) " UNION/**/" sequences, which are not rejected by the protection mechanism, as d...
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke
Phpnuke Php-nuke 7.6
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.3
1 EDB exploit
605
VMScore
CVE-2007-1520
The cross-site request forgery (CSRF) protection in PHP-Nuke 8.0 and previous versions does not ensure the SERVER superglobal is an array before validating the HTTP_REFERER, which allows remote malicious users to conduct CSRF attacks.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 6.5
Phpnuke Php-nuke 7.6
668
VMScore
CVE-2007-1450
SQL injection vulnerability in mainfile.php in PHP-Nuke 8.0 and previous versions allows remote malicious users to execute arbitrary SQL commands in the Top or News module via the lang parameter.
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.6
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 8.0.0
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 7.9
383
VMScore
CVE-2007-4212
Multiple cross-site scripting (XSS) vulnerabilities in the Search Module in PHP-Nuke allow remote malicious users to inject arbitrary web script or HTML via a trailing "<" instead of a ">" in (1) the onerror attribute of an IMG element, (2) the onload at...
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.6
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 8.0
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
383
VMScore
CVE-2007-1449
Directory traversal vulnerability in mainfile.php in PHP-Nuke 8.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the lang parameter.
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 8.0
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 8.0.0
Phpnuke Php-nuke 7.6
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.5
668
VMScore
CVE-2011-1480
SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the chng_uid parameter.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
383
VMScore
CVE-2011-1481
Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) sender_name or (2) sender_email parameter in a Feedback action to modules.php.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
605
VMScore
CVE-2011-1482
Multiple cross-site request forgery (CSRF) vulnerabilities in mainfile.php in Francisco Burzi PHP-Nuke 8.0 and previous versions allow remote malicious users to hijack the authentication of administrators for requests that (1) add user accounts or (2) grant the administrative pri...
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
668
VMScore
CVE-2008-6728
SQL injection vulnerability in the Sections module in PHP-Nuke, probably prior to 8.0, allows remote malicious users to execute arbitrary SQL commands via the artid parameter in a printpage action to modules.php.
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 6.5
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 5.4
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 5.1
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 5.0
685
VMScore
CVE-2004-1842
Cross-site request forgery (CSRF) vulnerability in Php-Nuke 6.x up to and including 7.1.0 allows remote malicious users to gain administrative privileges via an img tag with a URL to admin.php.
Phpnuke Php-nuke
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »