Paisterist

Name of the Vulnerable Software and Affected Versions: PHP-Nuke versions 7.9 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is possible when register globals is enabled and magic quotes gpc is disabled. The `cat` parameter is used for this purpose. Recommendations: For PHP-Nuke versions 7.9 and earlier, consider disabling the register globals setting and enabling magic quotes gpc to prevent exploitation. Additionally, restrict access to the blocks/block-Old Articles.php file until a fix is available. Avoid using the `cat` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHP-Nuke versions 7.9 and earlier **Description** The issue concerns SQL injection vulnerabilities in the rate article and rate complete functions within the News module of PHP-Nuke. These vulnerabilities can be exploited when magic quotes gpc is disabled, allowing remote attackers to execute arbitrary SQL commands via the `sid` parameter. **Recommendations** For PHP-Nuke versions 7.9 and earlier, consider disabling the rate article and rate complete functions in the News module until a patch is available. Restrict access to the News module to minimize the risk of exploitation. Avoid using the `sid` parameter in affected functions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: PHP-Nuke versions 7.9 and earlier Description: A SQL injection issue exists in the Journal module, specifically in the modules/journal/search.php file, allowing remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the `forwhat` parameter. Recommendations: For PHP-Nuke versions 7.9 and earlier, consider restricting access to the vulnerable `search.php` file in the Journal module until a patch is available. As a temporary workaround, avoid using the `forwhat` parameter in the affected module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PHP-Nuke versions 7.9 and earlier **Description** The issue allows remote attackers to conduct SQL injection attacks due to an incomplete blacklist vulnerability in the mainfile.php file. This is demonstrated by a SQL injection via the `eid` parameter in a search action in the Encyclopedia module in modules.php, using sequences such as "/**/UNION " or " UNION/**/" that are not rejected by the protection mechanism. **Recommendations** For PHP-Nuke versions 7.9 and earlier, consider restricting access to the Encyclopedia module in modules.php until a fix is available, and avoid using the `eid` parameter in search actions to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Blue Dojo Graffiti Forums version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `f` parameter in the topics.php file. **Recommendations** For Blue Dojo Graffiti Forums version 1.0, consider restricting access to the topics.php file or the `f` parameter to minimize the risk of exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** phpBB versions 2.0.12 and earlier **Description** The issue allows remote attackers to gain administrator privileges. This is achieved by manipulating the `autologinid` value in a cookie in the sessions.php file. **Recommendations** For phpBB versions 2.0.12 and earlier, update to a version later than 2.0.12 to resolve the issue.