Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

postnuke software foundation postnuke 0.64 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2001-1460
SQL injection vulnerability in article.php in PostNuke 0.62 up to and including 0.64 allows remote malicious users to bypass authentication via the user parameter.
Postnuke Software Foundation Postnuke 0.64Postnuke Software Foundation Postnuke 0.62Postnuke Software Foundation Postnuke 0.63
2.6
CVSSv2
CVE-2001-1521
Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote malicious users to inject arbitrary web script or HTML via the uname parameter.
Postnuke Software Foundation Postnuke 0.63Postnuke Software Foundation Postnuke 0.64Postnuke Software Foundation Postnuke 0.62
2.6
CVSSv2
CVE-2002-1996
Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php.
Postnuke Software Foundation Postnuke 0.62Postnuke Software Foundation Postnuke 0.63Postnuke Software Foundation Postnuke 0.64Postnuke Software Foundation Postnuke 0.7Postnuke Software Foundation Postnuke 0.703Postnuke Software Foundation Postnuke 0.70Postnuke Software Foundation Postnuke 0.71
5
CVSSv2
CVE-2002-0535
Cross-site scripting vulnerabilities in PostBoard 2.0.1 and previous versions allows remote malicious users to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title.
Postboard Postboard 2.0Postboard Postboard 2.0.1Postnuke Software Foundation Postnuke 0.64Postnuke Software Foundation Postnuke 0.71Postnuke Software Foundation Postnuke 0.70Postnuke Software Foundation Postnuke 0.703
2.6
CVSSv2
CVE-2006-0800
Interpretation conflict in PostNuke 0.761 and previous versions allows remote malicious users to conduct cross-site scripting (XSS) attacks via HTML tags with a trailing "<" character, which is interpreted as a ">" character by some web browsers but bypa...
Postnuke Software Foundation Postnuke 0.71Postnuke Software Foundation Postnuke 0.72Postnuke Software Foundation Postnuke 0.76 Rc4Postnuke Software Foundation Postnuke 0.76 Rc4aPostnuke Software Foundation Postnuke 0.63Postnuke Software Foundation Postnuke 0.64Postnuke Software Foundation Postnuke 0.73Postnuke Software Foundation Postnuke 0.74Postnuke Software Foundation Postnuke 0.761aPostnuke Software Foundation Postnuke 0.62Postnuke Software Foundation Postnuke 0.721Postnuke Software Foundation Postnuke 0.726.3Postnuke Software Foundation Postnuke 0.76 Rc4bPostnuke Software Foundation Postnuke 0.761Postnuke Software Foundation Postnuke 0.7Postnuke Software Foundation Postnuke 0.70Postnuke Software Foundation Postnuke 0.703Postnuke Software Foundation Postnuke 0.75Postnuke Software Foundation Postnuke 0.75 Rc3
7.5
CVSSv2
CVE-2001-0911
PHP-Nuke 5.1 stores user and administrator passwords in a base-64 encoded cookie, which could allow remote malicious users to gain privileges by stealing or sniffing the cookie and decoding it.
Francisco Burzi Php-nuke 5.1Francisco Burzi Php-nuke 5.2Francisco Burzi Php-nuke 5.3.1Postnuke Software Foundation Postnuke 0.64
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook