CVE-2005-2690

Publication date

2005-08-24 04:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in the Downloads module in PostNuke 0.760-RC4b allows PostNuke administrators to execute arbitrary SQL commands via the show parameter to dl-viewdownload.php.