7 lines
No EOL
423 B
Text
Executable file
7 lines
No EOL
423 B
Text
Executable file
source: http://www.securityfocus.com/bid/7588/info
|
|
|
|
PHP-Nuke is reportedly prone to multiple SQL injection vulnerabilities in the Downloads module. Exploitation could allow for injection of malicious SQL syntax, resulting in modification of SQL query logic or other attacks.
|
|
|
|
http://www.example.com/modules.php?name=Downloads&d_op=getit&lid=2%20<our_code>
|
|
|
|
where <our_code> represents SQL code that can be injected. |