CVE-2008-0461

PHP-Nuke < 8.0_final - SQL Injection via Search Module sid Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0461. PoCs published by RST/GHC.

AI-analyzed exploit summary This is a PHP-based exploit for CVE-2008-0461, targeting a SQL injection vulnerability in PHP-Nuke's Search module via the `sid` parameter. It allows an attacker to extract admin credentials by manipulating SQL queries through POST requests.

Description

SQL injection vulnerability in index.php in the Search module in PHP-Nuke 8.0 FINAL and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the sid parameter in a comments action to modules.php. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by RST/GHC · phpwebappsphp

https://www.exploit-db.com/exploits/4965

View Code ZIP pw:eip

This is a PHP-based exploit for CVE-2008-0461, targeting a SQL injection vulnerability in PHP-Nuke's Search module via the `sid` parameter. It allows an attacker to extract admin credentials by manipulating SQL queries through POST requests.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: PHP-Nuke (versions 6.0, 6.6, 7.9, 8.0 FINAL)

No auth needed

Prerequisites: Target must be running a vulnerable version of PHP-Nuke · Search module must be accessible

MITRE ATT&CK