Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
postnuke vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1713
SQL injection vulnerability in modules.php in PostNuke 0.764 allows remote malicious users to execute arbitrary SQL commands via the sid parameter in a News article modload action.
Postnuke Postnuke 0.764
1 EDB exploit
NA
CVE-2009-0728
SQL injection vulnerability in the My_eGallery module for MAXdev MDPro (MD-Pro) and Postnuke allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php.
Maxdev My Egallery -
1 EDB exploit
NA
CVE-2008-2191
SQL injection vulnerability in the pnEncyclopedia module 0.2.0 and previous versions for PostNuke allows remote malicious users to execute arbitrary SQL commands via the id parameter in a display_term action to index.php.
Postnuke Software Foundation Pnencyclopedia
1 EDB exploit
NA
CVE-2008-2012
SQL injection vulnerability in index.php in the PostSchedule 1.0 module for PostNuke allows remote malicious users to execute arbitrary SQL commands via the eid parameter in an event action.
Postnuke Software Foundation Postschedule 1.0
1 EDB exploit
NA
CVE-2008-2013
SQL injection vulnerability in index.php in the pnFlashGames 1.5 up to and including 2.5 module for PostNuke, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter in a display action.
Pnflashgames Pnflashgames 1.5
Pnflashgames Pnflashgames 2.5
1 EDB exploit
NA
CVE-2008-1591
The pnVarPrepForStore function in PostNuke 0.764 and previous versions skips input sanitization when magic_quotes_runtime is enabled, which allows remote malicious users to conduct SQL injection attacks and execute arbitrary SQL commands via input associated with server variables...
Postnuke Postnuke
1 EDB exploit
NA
CVE-2007-3584
SQL injection vulnerability in viewforum.php in PNphpBB2 1.2i and previous versions for Postnuke allows remote malicious users to execute arbitrary SQL commands via the order parameter.
Postnuke Software Foundation Pnphpbb2
1 EDB exploit
NA
CVE-2007-3052
SQL injection vulnerability in index.php in the PNphpBB2 1.2i and previous versions module for PostNuke allows remote malicious users to execute arbitrary SQL commands via the c parameter.
Postnuke Software Foundation Pnphpbb
1 EDB exploit
NA
CVE-2007-2492
SQL injection vulnerability in index.php in the v4bJournal module for PostNuke allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a journal_comment action.
Postnuke Software Foundation Postnuke V4bjournal Module 0.99
1 EDB exploit
NA
CVE-2007-2427
SQL injection vulnerability in index.php in the pnFlashGames 1.5 module for PostNuke allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Pnflashgames Pnflashgames 1.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »