NuytsTech Security

CVE-2005-1048

by ·

SQL injection vulnerability in modules.php in PostNuke 0.760 RC3 allows remote attackers to execute arbitrary SQL statements via the sid parameter. NOTE: the vendor reports that they could not reproduce the issues for 760 RC3, or for .750.

Date published : 2005-04-12

http://marc.info/?l=bugtraq&m=111298226029957&w=2

http://digitalparadox.org/advisories/postnuke.txt

Tags: