CVE-2004-2295

SQL injection vulnerability in the Reviews module in PHP-Nuke 6.0 to 7.3 allows remote attackers to execute arbitrary SQL commands via the order parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:francisco_burzi:php-nuke:6.0:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.5:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.5_beta1:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.5_final:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc1:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc2:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.5_rc3:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.6:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.7:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:6.9:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:7.0:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:7.0_final:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:7.1:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:7.2:*:*:*:*:*:*:*
cpe:2.3:a:francisco_burzi:php-nuke:7.3:*:*:*:*:*:*:*

History

20 Nov 2024, 23:52

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0310.html - () http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0310.html -
References () http://secunia.com/advisories/11852 - Vendor Advisory () http://secunia.com/advisories/11852 - Vendor Advisory
References () http://www.osvdb.org/7000 - Exploit () http://www.osvdb.org/7000 - Exploit
References () http://www.securityfocus.com/archive/1/365865 - Exploit () http://www.securityfocus.com/archive/1/365865 - Exploit
References () http://www.securityfocus.com/bid/10524 - Exploit () http://www.securityfocus.com/bid/10524 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/16407 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/16407 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:52


NVD link : CVE-2004-2295

Mitre link : CVE-2004-2295

CVE.ORG link : CVE-2004-2295


JSON object : View

Products Affected

francisco_burzi

  • php-nuke