CVE-2004-0738

Name of the Vulnerable Software and Affected Versions Php-Nuke (affected versions not specified)

Description The issue concerns multiple SQL injection vulnerabilities in the Search module of Php-Nuke. These vulnerabilities allow remote attackers to execute arbitrary SQL commands by manipulating the min or categ parameters.

Recommendations For Php-Nuke, consider restricting access to the Search module until a fix is available. As a temporary workaround, avoid using the min and categ parameters in the Search module to minimize the risk of exploitation.