Return to CVE list

CVE-2008-1315

7.5
Critical

CVE-2008-1315

cve@mitre.org
Modified
View on MITREFind on GitHub

Description

SQL injection vulnerability in the ZClassifieds module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the cat parameter to modules.php.

Exploits

313842008-03-11webappsPHP

PHP-Nuke zClassifieds Module - 'cat' SQL Injection

By Lovebug

References

cve@mitre.org
http://securityreason.com/securityalert/3736
cve@mitre.org
http://www.rbt-4.net/forum/viewthread.php?forum_id=51&thread_id=3109
cve@mitre.org
http://www.securityfocus.com/archive/1/489416/100/0/threaded
cve@mitre.org
http://www.securityfocus.com/bid/28211
cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/41149
af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/3736
af854a3a-2127-422b-91ae-364da2661108
http://www.rbt-4.net/forum/viewthread.php?forum_id=51&thread_id=3109
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/489416/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/28211
af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/41149