Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

postnuke postnuke 0.764 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2010-1713
SQL injection vulnerability in modules.php in PostNuke 0.764 allows remote malicious users to execute arbitrary SQL commands via the sid parameter in a News article modload action.
Postnuke Postnuke 0.764
NA
CVE-2007-0384
Cross-site scripting (XSS) vulnerability in preview in the reviews section in PostNuke 0.764 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Postnuke Software Foundation Postnuke 0.764
NA
CVE-2007-0385
The faq section in PostNuke 0.764 allows remote malicious users to obtain sensitive information (the full path) via "unvalidated output" in FAQ/index.php, possibly involving an undefined id_cat variable.
Postnuke Software Foundation Postnuke 0.764
NA
CVE-2007-0386
Unspecified vulnerability in the rating section in PostNuke 0.764 has unknown impact and attack vectors, related to "an interesting bug."
Postnuke Software Foundation Postnuke 0.764
NA
CVE-2008-1591
The pnVarPrepForStore function in PostNuke 0.764 and previous versions skips input sanitization when magic_quotes_runtime is enabled, which allows remote malicious users to conduct SQL injection attacks and execute arbitrary SQL commands via input associated with server variables...
Postnuke Postnuke
NA
CVE-2006-6233
SQL injection vulnerability in the Downloads module for unknown versions of PostNuke allows remote malicious users to execute arbitrary SQL commands via the lid parameter in a viewdownloaddetails operation. NOTE: this issue might have been in the viewdownloaddetails function in d...
Postnuke Software Foundation Postnuke 0.76 Rc4bPostnuke Software Foundation Postnuke 0.760 Rc2Postnuke Software Foundation Postnuke 0.76 Rc4Postnuke Software Foundation Postnuke 0.76 Rc4aPostnuke Software Foundation Postnuke 0.762Postnuke Software Foundation Postnuke 0.763Postnuke Software Foundation Postnuke 0.760 Rc3Postnuke Software Foundation Postnuke 0.760 Rc4Postnuke Software Foundation Postnuke 0.761Postnuke Software Foundation Postnuke 0.761a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook