This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
ISS X-Force reports :
PostNuke is vulnerable to SQL injection. A remote attacker could send
specially crafted SQL statements to the admin section using the hits
parameter, which could allow the attacker to view, add, modify or
delete information in the back-end database.
See also :
Update the affected package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true