Pejvak

**Name of the Vulnerable Software and Affected Versions** PHP-Nuke version 8.0 **Description** A SQL injection issue exists in the Web Links module, allowing remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the `url` parameter in an Add action to `modules.php`. **Recommendations** For PHP-Nuke version 8.0, consider restricting access to the Web Links module until a patch is available. As a temporary workaround, avoid using the `url` parameter in the Add action to `modules.php` to minimize the risk of exploitation.