RSS   Vulnerabilities for 'Postnuke v4bjournal module'   RSS

2007-05-03
 
CVE-2007-2492

CWE-Other
 

 
SQL injection vulnerability in index.php in the v4bJournal module for PostNuke allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a journal_comment action.

 

 >>> Vendor: Postnuke software foundation 8 Products
Postnuke
Postcalendar
Pnphpbb
Pagesetter
Postnuke v4bjournal module
Pnphpbb2
Postschedule
Pnencyclopedia


Copyright 2024, cxsecurity.com

 

Back to Top