Known Vulnerabilities for products from Phpnuke
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Phpnuke".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-30177 json | There is a SQL Injection vulnerability in PHP-Nuke 8.3.3 in the User Registration section, leading to remote code execution. ... | 9.8 - CRITICAL | 2021-04-07 | 2021-04-13 |
| CVE-2014-3934 json | SQL injection vulnerability in the Submit_News module for PHP-Nuke 8.3 allows remote attackers to execute arbitrary SQL comma... | 7.5 - HIGH | 2014-06-02 | 2014-06-03 |
| CVE-2011-3784 json | Francisco Burzi PHP-Nuke 8.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, whi... | 5 - MEDIUM | 2011-09-24 | 2012-05-21 |
| CVE-2011-1482 json | Multiple cross-site request forgery (CSRF) vulnerabilities in mainfile.php in Francisco Burzi PHP-Nuke 8.0 and earlier allow ... | 6.8 - MEDIUM | 2011-06-21 | 2023-11-07 |
| CVE-2011-1481 json | Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and earlier allow remote attackers to inj... | 4.3 - MEDIUM | 2011-06-21 | 2023-11-07 |
| CVE-2011-1480 json | SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and earlier allows rem... | 7.5 - HIGH | 2011-06-21 | 2023-11-07 |
| CVE-2010-5083 json | SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL command... | 7.5 - HIGH | 2012-02-14 | 2019-07-01 |
| CVE-2009-1842 json | SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to execute a... | 7.5 - HIGH | 2009-06-01 | 2017-08-17 |
| CVE-2008-7226 json | SQL injection vulnerability in index.php in the Recipes module 1.3, 1.4, and possibly other versions for PHP-Nuke allows remo... | 7.5 - HIGH | 2009-09-14 | 2019-07-01 |
| CVE-2008-7038 json | SQL injection vulnerability in the My_eGallery module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands ... | 7.5 - HIGH | 2009-08-24 | 2018-10-11 |
| CVE-2008-6865 json | SQL injection vulnerability in modules.php in the Sectionsnew module for PHP-Nuke allows remote attackers to execute arbitrar... | 7.5 - HIGH | 2009-07-14 | 2019-07-01 |
| CVE-2008-6779 json | SQL injection vulnerability in the Sarkilar module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via... | 7.5 - HIGH | 2009-05-01 | 2017-08-17 |
| CVE-2008-6728 json | SQL injection vulnerability in the Sections module in PHP-Nuke, probably before 8.0, allows remote attackers to execute arbit... | 7.5 - HIGH | 2009-04-20 | 2018-10-11 |
| CVE-2008-5039 json | Cross-site scripting (XSS) vulnerability in the League module for PHP-Nuke, possibly 2.4, allows remote attackers to inject a... | 4.3 - MEDIUM | 2008-11-12 | 2019-07-01 |
| CVE-2008-4804 json | SQL injection vulnerability in the Gallery module 1.3 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands ... | 7.5 - HIGH | 2008-10-31 | 2019-07-01 |
| CVE-2008-4767 json | Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote attackers to execute arbitrary c... | 9 - HIGH | 2008-10-28 | 2019-07-01 |
| CVE-2008-3151 json | SQL injection vulnerability in the 4ndvddb 0.91 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands... | 7.5 - HIGH | 2008-07-11 | 2018-10-11 |
| CVE-2008-2020 json | The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 and 8.1, (2) my123tkShop e-Commerce-Suite (aka 123tkSh... | 6.8 - MEDIUM | 2008-04-30 | 2018-10-11 |
| CVE-2008-1314 json | SQL injection vulnerability in the Johannes Hass gaestebuch 2.2 module for PHP-Nuke allows remote attackers to execute arbitr... | 7.5 - HIGH | 2008-03-12 | 2019-07-01 |
| CVE-2008-1308 json | SQL injection vulnerability in the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke allows remote attackers to execute arbi... | 7.5 - HIGH | 2008-03-12 | 2019-07-01 |
Known software with vulnerabilities from Phpnuke
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Phpnuke | Myheadlines | 4.3.1 |
| Application | Phpnuke | Php-nuke | - |
| Application | Phpnuke | Phpnuke | 5.0 |
| Application | Phpnuke | Submit News Module | - |
| Application | Phpnuke | Web Links Module | - |