SQL Injection in Phpnuke Php-nuke

CVE-2008-1308

SQL injection vulnerability in the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the id_catg parameter in a ViewCatg action to modules.php.

Vulnerability class: SQL Injection

EPSS: 0.010 (57.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References