Unrated severityNVD Advisory· Published Mar 23, 2006· Updated Apr 16, 2026

CVE-2006-1362

Description

Multiple SQL injection vulnerabilities in Mini-Nuke CMS System 1.8.2 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the uid parameter in (a) members.asp, the (2) catid parameter in (b) articles.asp and (c) programs.asp, and the (3) id parameter in (d) hpages.asp and (e) forum.asp. NOTE: The pages.asp/id vector is already covered by CVE-2006-0870.

Affected products

Mini Nuke/Mini Nuke CMS
cpe:2.3:a:mini-nuke:mini-nuke_cms:*:*:*:*:*:*:*:*
Range: <=1.8.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/18439nvd
securityreason.com/securityalert/617nvd
www.securityfocus.com/archive/1/428361/100/0/threadednvd
exchange.xforce.ibmcloud.com/vulnerabilities/25372nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000