SQL injection vulnerability in index.php in Francisco Burzi PHP-Nuke 8.0 Final and previous versions, when the "HTTP Referers" block is enabled, allows remote malicious users to execute arbitrary SQL commands via the HTTP Referer header (HTTP_REFERER variable).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
francisco burzi php-nuke |