Vulnerability CVE-2005-1699

Vulnerability CVE-2005-1699

Published: 2005-05-24 Modified: 2012-02-12

Description:

	Topic	Author	Date
Med.	PostNuke Non Critical SQL Injection and Include 0.760-RC3=>x	Maksymilian Arci...	30.09.2005

Type:

(Improper Control of Filename for Include/Require Statement in PHP Program ('PHP File Inclusion'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4/10	2.9/10	8/10

Affected software
Postnuke software foundation -> Postnuke

http://marc.theaimsgroup.com/?l=bugtraq&m=111670586322172&w=2