CVE-2008-0879 Information

Description

SQL injection vulnerability in modules.php in the Web_Links module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the cid parameter in a viewlink action.

Reference

http://packetstormsecurity.com/files/126697/PHP-Nuke-Web-Links-SQL-Injection.html http://securityreason.com/securityalert/3684 http://www.securityfocus.com/archive/1/488356/100/0/threaded http://www.securityfocus.com/bid/27894 http://www.securityfocus.com/bid/67463 https://exchange.xforce.ibmcloud.com/vulnerabilities/40862