Postnuke Security Vulnerabilities and Issues — Postnuke CVE List

Lucene search

Postnuke Software FoundationPostnuke

3 matches found

CVE•added 2005/07/14 4:0 a.m.•37 views

CVE-2002-2015

PHP file inclusion vulnerability in user.php in PostNuke 0.703 allows remote attackers to include arbitrary files and possibly execute code via the caselist parameter.

7.5CVSS7.7AI score0.02624EPSS

CVE•added 2005/07/14 4:0 a.m.•36 views

CVE-2001-1521

Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to inject arbitrary web script or HTML via the uname parameter.

2.6CVSS6AI score0.00346EPSS

CVE•added 2005/07/14 4:0 a.m.•30 views

CVE-2002-1996

Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php.

2.6CVSS6AI score0.00504EPSS