HomeResources > Vulnerabilites > CVE-2007-0309

CVE-2007-0309

Status:

Candidate

Description:

SQL injection vulnerability in blocks/block-Old_Articles.php in Francisco Burzi PHP-Nuke 7.9 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cat parameter.

Reference:

Phase:

Assigned (20070117)
CVE IDProtocolSoursePortTargetPort

Other Vulnerabilities:

Year CEV (3053)
Common Vulnerabilities
and Exposures
CAN (20174)
Candidate
1999CVE-1999 (821)CAN-1999 (749 )
2000CVE-2000 (808)CAN-2000 (423 )
2001CVE-2001 (625)CAN-2001 (934 )
2002CVE-2002 (643)CAN-2002 (1566)
2003CVE-2003 (81 )CAN-2003 (1236)
2004CVE-2004 (75 )CAN-2004 (2601)
2005-CAN-2005 (4825)
2006-CAN-2006 (6982)
2007-CAN-2007 (858 )

Free Network Analyzer

Free Network Analyzer
New Capsa v7.7 Released, Try it Free!

We’re here to help…

    If you have any problem, please tell us to help you.
  • Contact Us
  • Call:  800-381-6680
    Fax:  888-813-1029
    email:  

Stay in touch

Colasoft in Facebook   Colasoft in Twitter   Colasoft in Linkedin

Colasoft, Capsa, nChronos and Colasoft logos are registered trademarks of Colasoft. Sniffer is a registered trademark of Network General Corporation. All other names are trademarks or registered trademarks of their respective owners.