Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7226

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-7226
Last Modified 15 Sep 2009 12:00:00
Published 14 Sep 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7226

Summary

SQL injection vulnerability in index.php in the Recipes module 1.3, 1.4, and possibly other versions for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the recipeid parameter.

Vulnerable Systems

Application

  • Php-nuke Recipe Module 1.3

  • Php-nuke Recipe Module 1.4


References

XF - recipe-modules-sql-injection(40807)

BID - 27955

BUGTRAQ - 20080223 php-nuke Recipes SQL Injection(recipeid)

OSVDB - 52224


Last Updated: 27 May 2016 10:49:30