CVE-2007-1450 Information

Description

SQL injection vulnerability in mainfile.php in PHP-Nuke 8.0 and earlier allows remote attackers to execute arbitrary SQL commands in the Top or News module via the lang parameter.

Reference

http://www.securityfocus.com/archive/1/462443/100/0/threaded http://www.securityfocus.com/bid/22909