cpe:/a:postnuke_software_foundation:postschedule:1.0 CVE-2008-2012 2008-04-29T20:10:00.000-04:00 2017-09-28T21:30:58.910-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-05-01T14:44:00.000-04:00 ALLOWS_OTHER_ACCESS BID 28931 EXPLOIT-DB 5495 XF postschedule-index-sql-injection(42010) SQL injection vulnerability in index.php in the PostSchedule 1.0 module for PostNuke allows remote attackers to execute arbitrary SQL commands via the eid parameter in an event action.