CVE-2005-3792 in PHP-Nukeinfo

Summary

by MITRE

Multiple SQL injection vulnerabilities in the Search module in PHP-Nuke 7.8, and possibly other versions before 7.9 with patch 3.1, allows remote attackers to execute arbitrary SQL commands, as demonstrated via the query parameter in a stories type.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Analysis

by VulDB Data Team • 09/22/2025

The vulnerability identified as CVE-2005-3792 represents a critical SQL injection flaw within the Search module of PHP-Nuke 7.8 and potentially earlier versions up to 7.8 with patch 3.1. This vulnerability resides in the handling of user input within the stories type search functionality, where the query parameter fails to properly sanitize or validate incoming data before incorporating it into SQL database queries. The flaw allows malicious actors to inject arbitrary SQL commands through carefully crafted input, bypassing normal authentication and authorization mechanisms that protect database integrity and user privacy.

The technical nature of this vulnerability aligns with CWE-89, which specifically addresses SQL injection weaknesses in software applications. The root cause stems from insufficient input validation and improper parameter handling within the PHP-Nuke Search module, where user-supplied data flows directly into database execution contexts without adequate sanitization. This design flaw creates an attack surface that enables remote code execution through database manipulation, allowing threat actors to potentially extract sensitive information, modify database records, or even gain administrative access to the underlying database system. The vulnerability operates at the application layer and can be exploited without requiring any special privileges or authentication credentials from the attacker.

The operational impact of CVE-2005-3792 extends beyond simple data theft, as it enables comprehensive database compromise through the execution of arbitrary SQL commands. Attackers can leverage this vulnerability to perform unauthorized data access, data modification, or complete database destruction depending on their access level and the privileges of the database account used by PHP-Nuke. The remote exploitation capability means that attackers can target vulnerable systems from anywhere on the internet, making this vulnerability particularly dangerous for web applications that handle sensitive user data or business-critical information. The attack vector specifically targets the stories type search functionality, suggesting that any application using PHP-Nuke's search module with similar implementation patterns may be susceptible to comparable attacks.

Mitigation strategies for this vulnerability require immediate patch application to PHP-Nuke versions 7.9 or later, which contain the necessary security fixes to address the SQL injection flaws. Organizations should implement proper input validation and parameterized queries throughout their application code to prevent similar vulnerabilities from emerging in future development cycles. The remediation process should include comprehensive code review of all database interaction points, particularly search and filter functions that process user input. Additionally, implementing web application firewalls and database activity monitoring can provide additional layers of protection while patches are being deployed. Security practitioners should also consider applying the principle of least privilege to database accounts used by PHP-Nuke applications, limiting potential damage from successful exploitation attempts. This vulnerability demonstrates the critical importance of input sanitization and proper database query construction in preventing remote code execution through SQL injection attacks.

Reservation

11/24/2005

Disclosure

11/24/2005

Moderation

accepted

Entry

VDB-27066

CPE

ready

Exploit

Download

EPSS

0.44293

KEV

no

Activities

very low

Sources

Do you need the next level of professionalism?

Upgrade your account now!