Known Vulnerabilities for products from Phpnuke
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Phpnuke".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-30177 json | There is a SQL Injection vulnerability in PHP-Nuke 8.3.3 in the User Registration section, leading to remote code execution. ... | 9.8 - CRITICAL | 2021-04-07 | 2021-04-13 |
| CVE-2014-3934 json | SQL injection vulnerability in the Submit_News module for PHP-Nuke 8.3 allows remote attackers to execute arbitrary SQL comma... | 7.5 - HIGH | 2014-06-02 | 2014-06-03 |
| CVE-2011-3784 json | Francisco Burzi PHP-Nuke 8.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, whi... | Not Provided | 2011-09-24 | 2026-04-29 |
| CVE-2011-1482 json | Multiple cross-site request forgery (CSRF) vulnerabilities in mainfile.php in Francisco Burzi PHP-Nuke 8.0 and earlier allow ... | Not Provided | 2011-06-21 | 2026-04-29 |
| CVE-2011-1481 json | Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and earlier allow remote attackers to inj... | Not Provided | 2011-06-21 | 2026-04-29 |
| CVE-2011-1480 json | SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and earlier allows rem... | Not Provided | 2011-06-21 | 2026-04-29 |
| CVE-2010-5083 json | SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL command... | Not Provided | 2012-02-14 | 2026-04-29 |
| CVE-2009-1842 json | SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to execute a... | Not Provided | 2009-06-01 | 2026-04-23 |
| CVE-2008-7226 json | SQL injection vulnerability in index.php in the Recipes module 1.3, 1.4, and possibly other versions for PHP-Nuke allows remo... | Not Provided | 2009-09-14 | 2026-04-23 |
| CVE-2008-7038 json | SQL injection vulnerability in the My_eGallery module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands ... | Not Provided | 2009-08-24 | 2026-04-23 |
| CVE-2008-6865 json | SQL injection vulnerability in modules.php in the Sectionsnew module for PHP-Nuke allows remote attackers to execute arbitrar... | Not Provided | 2009-07-14 | 2026-04-23 |
| CVE-2008-6779 json | SQL injection vulnerability in the Sarkilar module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via... | Not Provided | 2009-05-01 | 2026-04-23 |
| CVE-2008-6728 json | SQL injection vulnerability in the Sections module in PHP-Nuke, probably before 8.0, allows remote attackers to execute arbit... | Not Provided | 2009-04-20 | 2026-04-23 |
| CVE-2008-5039 json | Cross-site scripting (XSS) vulnerability in the League module for PHP-Nuke, possibly 2.4, allows remote attackers to inject a... | Not Provided | 2008-11-12 | 2026-04-23 |
| CVE-2008-4804 json | SQL injection vulnerability in the Gallery module 1.3 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands ... | Not Provided | 2008-10-31 | 2026-04-23 |
| CVE-2008-4767 json | Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote attackers to execute arbitrary c... | Not Provided | 2008-10-28 | 2026-04-23 |
| CVE-2008-3151 json | SQL injection vulnerability in the 4ndvddb 0.91 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands... | Not Provided | 2008-07-11 | 2026-04-23 |
| CVE-2008-2020 json | The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 and 8.1, (2) my123tkShop e-Commerce-Suite (aka 123tkSh... | Not Provided | 2008-04-30 | 2026-04-23 |
| CVE-2008-1314 json | SQL injection vulnerability in the Johannes Hass gaestebuch 2.2 module for PHP-Nuke allows remote attackers to execute arbitr... | Not Provided | 2008-03-12 | 2026-04-23 |
| CVE-2008-1308 json | SQL injection vulnerability in the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke allows remote attackers to execute arbi... | Not Provided | 2008-03-12 | 2026-04-23 |
Known software with vulnerabilities from Phpnuke
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Phpnuke | Myheadlines | 4.3.1 |
| Application | Phpnuke | Php-nuke | - |
| Application | Phpnuke | Phpnuke | 5.0 |
| Application | Phpnuke | Submit News Module | - |
| Application | Phpnuke | Web Links Module | - |