CVE-2004-0266

Medium

5/10

Summary

SQL injection vulnerability in the "public message" capability (public_message) for Php-Nuke 6.x to 7.1.0 allows remote attackers to obtain the administrator password via the c_mid parameter.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Nov 23, 2004

CVE-2004-0266

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS