• info
• discussion
• exploit
• solution
• references

PostNuke Phoenix Multiple Module SQL Injection Vulnerabilities

Solution:
The vendor has released advisory PNSA 2004-2 as well as a patch and an upgrade dealing with this issue.


PostNuke Development Team PostNuke Phoenix 0.726

• PostNuke PNSA2004-2.tar.gz
  http://download.hostnuke.com/sf/postnuke/PNSA2004-2.tar.gz


• PostNuke PostNuke-0.726-2.tar.gz
  http://download.hostnuke.com/sf/postnuke/PostNuke-0.726-2.tar.gz