SQL injection vulnerability in the Your_Account module in PHP-Nuke 7.8 might allows remote attackers to execute arbitrary SQL commands via the user_id parameter in the Your_Home functionality. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
https://exchange.xforce.ibmcloud.com/vulnerabilities/44730
http://www.vupen.com/english/advisories/2006/0687