PostNuke Trojaned Distribution
High Nessus Plugin ID 15570
SynopsisArbitrary commands can be run on the remote server.
DescriptionThe remote host seems to be running a copy of a trojaned version of the 'PostNuke' content management system.
PostNuke is a content management system in PHP whose main website has been compromised between the 24th and 26th of October 2004. An attacker modified some of the source code of the tool to execute arbitrary commands remotely on the remote host, by passing arguments to the 'oops' parameter of the file pnAPI.php.
SolutionUpgrade to the latest version of PostNuke.