Vulnerability Details CVE-2003-0279
Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5.x through 6.5 allows remote attackers to steal sensitive information via numeric fields, as demonstrated using (1) the viewlink function and cid parameter, or (2) index.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.5%
CVSS Severity
CVSS v2 Score 2.6
References
- http://archives.neohapsis.com/archives/bugtraq/2003-05/0147.html
- http://marc.info/?l=bugtraq&m=105276019312980&w=2
- http://www.securityfocus.com/bid/7558
- http://www.securityfocus.com/bid/7588
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11984
- http://archives.neohapsis.com/archives/bugtraq/2003-05/0147.html
- http://marc.info/?l=bugtraq&m=105276019312980&w=2
- http://www.securityfocus.com/bid/7558
- http://www.securityfocus.com/bid/7588
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11984
Products affected by CVE-2003-0279
-
cpe:2.3:a:francisco_burzi:php-nuke:5.0
-
cpe:2.3:a:francisco_burzi:php-nuke:6.0