Unrated severityNVD Advisory· Published Jan 18, 2007· Updated Jun 16, 2026
CVE-2007-0309
CVE-2007-0309
Description
SQL injection vulnerability in blocks/block-Old_Articles.php in Francisco Burzi PHP-Nuke 7.9 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cat parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
8- www.securityfocus.com/bid/22037nvdExploit
- osvdb.org/32863nvd
- secunia.com/advisories/23748nvd
- securityreason.com/securityalert/2153nvd
- securitytracker.com/idnvd
- www.neosecurityteam.net/advisories/PHP-Nuke--7.9-Old-Articles-Block-cat-SQL-Injection-vulnerability-31.htmlnvd
- www.securityfocus.com/archive/1/456787/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/31482nvd
News mentions
0No linked articles in our index yet.