Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Jun 16, 2026
CVE-2005-4715
CVE-2005-4715
Description
Multiple SQL injection vulnerabilities in modules.php in PHP-Nuke 7.8, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) name, (2) sid, and (3) pid parameters in a POST request, which bypasses security checks that are performed for GET requests.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
10- phpnuke.org/modules.phpnvdPatch
- secunia.com/advisories/16801nvdPatchVendor Advisory
- www.nukefixes.com/ftopict-1779-.htmlnvdPatch
- archives.neohapsis.com/archives/bugtraq/2005-09/0119.htmlnvdExploitVendor Advisory
- archives.neohapsis.com/archives/bugtraq/2005-09/0167.htmlnvd
- archives.neohapsis.com/archives/bugtraq/2005-09/0176.htmlnvd
- archives.neohapsis.com/archives/bugtraq/2005-09/0226.htmlnvd
- securityreason.com/securityalert/3nvd
- www.osvdb.org/19351nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/22247nvd
News mentions
0No linked articles in our index yet.