Known Vulnerabilities for products from Francisco Burzi
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Francisco Burzi".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2008-0461 json | SQL injection vulnerability in index.php in the Search module in PHP-Nuke 8.0 FINAL and earlier, when magic_quotes_gpc is dis... | Not Provided | 2008-01-25 | 2026-04-23 |
| CVE-2007-6376 json | Directory traversal vulnerability in autohtml.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to include and exec... | Not Provided | 2007-12-15 | 2026-04-23 |
| CVE-2007-5032 json | Cross-site request forgery (CSRF) vulnerability in admin.php in Francisco Burzi PHP-Nuke allows remote attackers to add admin... | Not Provided | 2007-09-21 | 2026-04-23 |
| CVE-2007-1061 json | SQL injection vulnerability in index.php in Francisco Burzi PHP-Nuke 8.0 Final and earlier, when the "HTTP Referers" block is... | Not Provided | 2007-02-22 | 2026-04-23 |
| CVE-2007-0372 json | Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 7.9 allow remote attackers to execute arbitrary SQL comman... | Not Provided | 2007-01-19 | 2026-04-23 |
| CVE-2007-0309 json | SQL injection vulnerability in blocks/block-Old_Articles.php in Francisco Burzi PHP-Nuke 7.9 and earlier, when register_globa... | Not Provided | 2007-01-18 | 2026-04-23 |
| CVE-2006-6234 json | Multiple SQL injection vulnerabilities in the Content module in PHP-Nuke 6.0, and possibly other versions, allow remote attac... | Not Provided | 2006-12-02 | 2026-04-23 |
| CVE-2006-6200 json | Multiple SQL injection vulnerabilities in the (1) rate_article and (2) rate_complete functions in modules/News/index.php in t... | Not Provided | 2006-12-01 | 2026-04-23 |
| CVE-2006-5720 json | SQL injection vulnerability in modules/journal/search.php in the Journal module in Francisco Burzi PHP-Nuke 7.9 and earlier a... | Not Provided | 2006-11-04 | 2026-04-23 |
| CVE-2006-1847 json | SQL injection vulnerability in the Your_Account module in PHP-Nuke 7.8 might allows remote attackers to execute arbitrary SQL... | Not Provided | 2006-04-19 | 2025-04-03 |
| CVE-2006-1846 json | Cross-site scripting (XSS) vulnerability in the Your_Account module in PHP-Nuke 7.8 might allows remote attackers to inject a... | Not Provided | 2006-04-19 | 2025-04-03 |
| CVE-2006-0908 json | PHP-Nuke 7.8 Patched 3.2 allows remote attackers to bypass SQL injection protection mechanisms via /%2a (/*) sequences with t... | Not Provided | 2006-02-28 | 2025-04-03 |
| CVE-2006-0907 json | SQL injection vulnerability in PHP-Nuke before 7.8 Patched 3.2 allows remote attackers to execute arbitrary SQL commands via ... | Not Provided | 2006-02-28 | 2025-04-03 |
| CVE-2006-0805 json | The CAPTCHA functionality in php-Nuke 6.0 through 7.9 uses fixed challenge/response pairs that only vary once per day based o... | Not Provided | 2006-02-21 | 2025-04-03 |
| CVE-2006-0679 json | SQL injection vulnerability in index.php in the Your_Account module in PHP-Nuke 7.8 and earlier allows remote attackers to ex... | Not Provided | 2006-02-16 | 2025-04-03 |
| CVE-2006-0676 json | Cross-site scripting (XSS) vulnerability in header.php in PHP-Nuke 6.0 to 7.8 allows remote attackers to inject arbitrary web... | Not Provided | 2006-02-13 | 2025-04-03 |
| CVE-2006-0163 json | SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 allows remote attackers to ... | Not Provided | 2006-01-11 | 2025-04-03 |
| CVE-2005-4715 json | Multiple SQL injection vulnerabilities in modules.php in PHP-Nuke 7.8, when magic_quotes_gpc is disabled, allow remote attack... | Not Provided | 2005-12-31 | 2025-04-03 |
| CVE-2005-4260 json | Interpretation conflict in includes/mainfile.php in PHP-Nuke 7.9 and later allows remote attackers to perform cross-site scri... | Not Provided | 2005-12-15 | 2025-04-03 |
| CVE-2005-3792 json | Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patc... | Not Provided | 2005-11-24 | 2025-04-03 |