Unrated severityNVD Advisory· Published Aug 31, 2001· Updated Jun 16, 2026
CVE-2001-1025
CVE-2001-1025
Description
PHP-Nuke 5.x allows remote attackers to perform arbitrary SQL operations by modifying the "prefix" variable when calling any scripts that do not already define the prefix variable (e.g., by including mainfile.php), such as article.php.
Affected products
3Patches
Vulnerability mechanics
References
2- archives.neohapsis.com/archives/vulnwatch/2001-q3/0019.htmlnvdExploitVendor Advisory
- www.securityfocus.com/bid/3149nvdExploitVendor Advisory
News mentions
0No linked articles in our index yet.