VULHUB ™

It is reported that PHPNuke is susceptible to multiple cross-site scripting and SQL injection vulnerabilities. This can allow for theft of cookie-based authentication credentials and other attacks. Attackers may supply malicious parameters to manipulate the structure and logic of SQL queries. These vulnerabilities were reported in version 7.3 of PHPNuke. Other versions may also be affected.

It is reported that PHPNuke is susceptible to multiple cross-site scripting and SQL injection vulnerabilities. This can allow for theft of cookie-based authentication credentials and other attacks. Attackers may supply malicious parameters to manipulate the structure and logic of SQL queries. These vulnerabilities were reported in version 7.3 of PHPNuke. Other versions may also be affected.