All Oracle Corp. Applications and most E-Business Suite customers are at high risk from multiple, critical SQL injection vulnerabilities. The vulnerabilities were uncovered by Stephen Kost from the security firm Integrigy Corp. Read Article

This is just to point out that phpNuke running MySQL is subject to the same issues as one of the main RDBMS players. It matters not what tool you use if you don't cleanse the input!