Ravens PHP Scripts - WARNING!!!!!! PHP-Nuke package used to highjack userinfo

Bob Marion writes "After having received a report from one of my users that a new PHP-Nuke package seemed to cause him to get spanish spam I opened the package and found that the Your Account module has 3 calls to copy any new user info to another site. The package comes from PHP-Nuke 7.8 RC8 OP ES. This is just one case of never using non-trusted sites packages!"