CVE-2005-1048 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-1048

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

SQL injection vulnerability in modules.php in PostNuke 0.760 RC3 allows remote attackers to execute arbitrary SQL statements via the sid parameter. NOTE: the vendor reports that they could not reproduce the issues for 760 RC3, or for .750.

Affected Software

Name	Vendor	Start Version	End Version
Postnuke	Postnuke_software_foundation	0.760_rc3 (including)	0.760_rc3 (including)

References

http://digitalparadox.org/advisories/postnuke.txt
http://marc.info/?l=bugtraq\u0026m=111298226029957\u0026w=2
http://news.postnuke.com/modules.php?op=modload\u0026name=News\u0026file=article\u0026sid=2679
http://secunia.com/advisories/14868/
http://securitytracker.com/id?1013670
http://www.osvdb.org/15371
https://exchange.xforce.ibmcloud.com/vulnerabilities/20019