CVE Vulnerabilities

CVE-2001-1460

Published: Oct 13, 2001 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in article.php in PostNuke 0.62 through 0.64 allows remote attackers to bypass authentication via the user parameter.

Affected Software

Name Vendor Start Version End Version
Postnuke Postnuke_software_foundation 0.63 0.63
Postnuke Postnuke_software_foundation 0.64 0.64
Postnuke Postnuke_software_foundation 0.62 0.62

References