Php Nuke · Php-Nuke · CVE-2010-5083
**Name of the Vulnerable Software and Affected Versions**
PHP-Nuke version 8.0
**Description**
A SQL injection issue exists in the Web Links module, allowing remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the `url` parameter in an Add action to `modules.php`.
**Recommendations**
For PHP-Nuke version 8.0, consider restricting access to the Web Links module until a patch is available. As a temporary workaround, avoid using the `url` parameter in the Add action to `modules.php` to minimize the risk of exploitation.