Detections
Analytics

FreeBSD : SQL injection vulnerability in phpnuke (75770425-67a2-11d8-80e3-0020ed76ef5a)

high Nessus Plugin ID 36995

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

Multiple researchers have discovered multiple SQL injection vulnerabilities in some versions of Php-Nuke. These vulnerabilities may lead to information disclosure, compromise of the Php-Nuke site, or compromise of the back-end database.

Solution

Update the affected package.

See Also

http://www.nessus.org/u?e79a7ba8

https://www.securityfocus.com/archive/1/348375

http://www.security-corporation.com/advisories-027.html

https://www.securityfocus.com/archive/1/353201

http://www.nessus.org/u?f0c6743c

Plugin Details

Severity: High

ID: 36995

File Name: freebsd_pkg_7577042567a211d880e30020ed76ef5a.nasl

Version: 1.14

Type: local

Published: 4/23/2009

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:phpnuke, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2/25/2004

Vulnerability Publication Date: 12/12/2003