Critical Vulnerability Information Affected Software PostNuke Version: 0.750 and above Vulnerability Description 1. Severe SQL Injection Affected File: /modules/Messages/readpmsg.php Code Snippet: Attack Steps: 1. Log in as a PostNuke user and send a message to yourself. 2. Request URL: Error Message: Exploiting SQL Injection: Can retrieve admin's MD5 password and username. 2. Cross-Site Scripting (XSS) Example of XSS Exploitation: This triggers the following error message, which can be exploited for XSS attacks. Remediation Apply PNSA 2005-2 security patch, which only modifies PostNuke 0.750. Patch download link: Additional Information Author: Contact: