CVE-2011-1480
SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and earlier allows remote attackers to execute arbitrary SQL commands via the chng_uid parameter.
Date published : 2011-06-20
http://yehg.net/lab/pr0js/advisories/%5Bphpnuke-8.x%5D_sql_injection