Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1308


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-1308
Last Modified 05 Sep 2008 12:00:00
Published 12 Mar 2008 01:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the id_catg parameter in a ViewCatg action to modules.php.

Vulnerable Systems


  • Sudirman Angriawan Nukec30 3.0


BID - 28197

BUGTRAQ - 20080311 PHP-Nuke Module NukeC30 sql injection

SREASON - 3733

Last Updated: 27 May 2016 10:47:06