CVE-2005-1694

Published: May 24, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple SQL injection vulnerabilities in Xanthia.php in the Xanthia module in PostNuke 0.750 allow remote attackers to execute arbitrary SQL commands via the (1) name or (2) module parameter.

Affected (1)

Products: Postnuke Software Foundation: Postnuke

Postnuke Software Foundation

1 product

Postnuke

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Postnuke Software Foundation Postnuke	Version 0.750

References (4)

http://marc.info/?l=bugtraq&m=111670823128472&w=2

Source: cve@mitre.org

http://news.postnuke.com/modules.php?op=modload&name=News&file=article&sid=2691

Source: cve@mitre.org

PatchVendor Advisory

http://marc.info/?l=bugtraq&m=111670823128472&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://news.postnuke.com/modules.php?op=modload&name=News&file=article&sid=2691

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.