2 matches found
CVE-2001-1492
CVE-2001-1492 is a refinement duplicate of CVE-2001-1460 and has been removed from active use; the connected records show that CVE-2001-1460 documents a SQL injection vulnerability in PostNuke 0.62–0.64 (article.php) that allows remote bypass of authentication via the user parameter. No additiona...
CVE-2001-1460
CVE-2001-1460 describes a SQL injection in PostNuke 0.62–0.64 that allows remote bypass of authentication via the user parameter in article.php. CVSS: base 7.5 (HIGH); network vector, low complexity, no authentication. Affected products: PostNuke 0.62–0.64. Root cause: insufficient input validati...