NuytsTech Security

CVE-2006-0679

by ·

SQL injection vulnerability in index.php in the Your_Account module in PHP-Nuke 7.8 and earlier allows remote attackers to execute arbitrary SQL commands via the username variable (Nickname field).

Date published : 2006-02-16

http://www.securityfocus.com/bid/16691

http://www.securityfocus.com/archive/1/425173/100/0/threaded

Tags: