Vendor Dictionary: PHPNuke.org

PHPNuke.org

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]
Full Details...

Vulnerabilities by Vendor Product

PHPNuke.org

PHPNuke.org

PHP-Nuke: 5.0; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.0.1; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.1; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.2; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.3; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.3.1; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.4; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.4 BETA; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.5; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; 5.6; OSVDB ID: 3933 PHP-Nuke Password Reset Injection; OSVDB ID: 6244 PHP-Nuke modules.php bio Parameter SQL Injection; 6.x; OSVDB ID: 6228 PHP-Nuke nukecops UnionTap XSS; OSVDB ID: 6222 PHP-Nuke index.php modpath Parameter Remote File Inclusion; OSVDB ID: 6593 PHP-Nuke eregi() Function Calling Script Access Path Disclosure; 7.0; OSVDB ID: 6227 PHP-Nuke Surveys Module Multiple Parameter XSS; OSVDB ID: 6222 PHP-Nuke index.php modpath Parameter Remote File Inclusion; OSVDB ID: 6593 PHP-Nuke eregi() Function Calling Script Access Path Disclosure; 7.1; OSVDB ID: 6227 PHP-Nuke Surveys Module Multiple Parameter XSS; OSVDB ID: 6222 PHP-Nuke index.php modpath Parameter Remote File Inclusion; OSVDB ID: 6593 PHP-Nuke eregi() Function Calling Script Access Path Disclosure; 7.2; OSVDB ID: 7950 PHP-Nuke Search Module instory Parameter SQL Injection; OSVDB ID: 6227 PHP-Nuke Surveys Module Multiple Parameter XSS; OSVDB ID: 6222 PHP-Nuke index.php modpath Parameter Remote File Inclusion; OSVDB ID: 7949 PHP-Nuke Search Module index.php Multiple Parameter XSS; OSVDB ID: 6593 PHP-Nuke eregi() Function Calling Script Access Path Disclosure; 7.3; OSVDB ID: 6228 PHP-Nuke nukecops UnionTap XSS; OSVDB ID: 8506 PHP-Nuke Search Box Multiple Parameter XSS; OSVDB ID: 6227 PHP-Nuke Surveys Module Multiple Parameter XSS; OSVDB ID: 6222 PHP-Nuke index.php modpath Parameter Remote File Inclusion; OSVDB ID: 6593 PHP-Nuke eregi() Function Calling Script Access Path Disclosure; 5.x; OSVDB ID: 6593 PHP-Nuke eregi() Function Calling Script Access Path Disclosure; 7.4; OSVDB ID: 9563 PHP-Nuke Admin Variable POST Method Privilege Escalation; 7.5; OSVDB ID: 16244 PHP-Nuke admin_styles.php phpbb_root_path Parameter Remote File Inclusion; OSVDB ID: 16245 PHP-Nuke admin_forums.php phpEx Variable Path Disclosure; OSVDB ID: 16246 PHP-Nuke admin_disallow.php phpEx Variable Path Disclosure; OSVDB ID: 16247 PHP-Nuke admin_smilies.php phpEx Variable Path Disclosure; OSVDB ID: 16248 PHP-Nuke admin_board.php phpEx Variable Path Disclosure; OSVDB ID: 16249 PHP-Nuke admin_users.php phpEx Variable Path Disclosure; OSVDB ID: 16250 PHP-Nuke admin_mass_email.php phpEx Variable Path Disclosure; OSVDB ID: 16251 PHP-Nuke admin_forum_prune.php phpEx Variable Path Disclosure; OSVDB ID: 16252 PHP-Nuke db.php the_include Variable Path Disclosure; 7.8; OSVDB ID: 20293 PHP-Nuke Web_Links Module description Parameter SQL Injection; OSVDB ID: 20291 PHP-Nuke Your Account Username Field SQL Injection; OSVDB ID: 20292 Downloads Module for PHP-Nuke modules.php url Parameter SQL Injection; OSVDB ID: 20866 PHP-Nuke Search Module query Parameter SQL Injection

Event Calendar: 2.13; OSVDB ID: 11884 PHP-Nuke Event Calendar Module Multiple Parameter SQL Injection; OSVDB ID: 11883 PHP-Nuke Event Calendar Module Comments Field XSS; OSVDB ID: 11882 PHP-Nuke Event Calendar Module Multiple Parameter XSS; OSVDB ID: 11881 PHP-Nuke Event Calendar Module submit.php Path Disclosure; OSVDB ID: 11880 PHP-Nuke Event Calendar Module index.php Path Disclosure; OSVDB ID: 11879 PHP-Nuke Event Calendar Module config.php Path Disclosure

NukeJokes: 1.7; OSVDB ID: 6011 PHP-Nuke NukeJokes Module Path Disclosure; OSVDB ID: 6012 PHP-Nuke NukeJokes Module Multiple Parameter XSS; OSVDB ID: 6013 PHP-Nuke NukeJokes Module modules.php jokeid Parameter SQL Injection; 2 Beta; OSVDB ID: 6011 PHP-Nuke NukeJokes Module Path Disclosure; OSVDB ID: 6012 PHP-Nuke NukeJokes Module Multiple Parameter XSS; OSVDB ID: 6013 PHP-Nuke NukeJokes Module modules.php jokeid Parameter SQL Injection

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.