Show filters
13 Total Results
Displaying 11-13 of 13
Sort by:
Attacker Value
Unknown

CVE-2005-0632

Disclosure Date: March 01, 2005 (last updated February 22, 2025)
PHP remote file inclusion vulnerability in auth.php in PHPNews 1.2.4 and possibly 1.2.3, allows remote attackers to execute arbitrary PHP code via the path parameter.
0
0
Attacker Value
Unknown

CVE-2004-2474

Disclosure Date: December 31, 2004 (last updated February 22, 2025)
SQL injection vulnerability in PHPNews 1.2.3 allows remote attackers to execute arbitrary SQL commands via the mid parameter to sendtofriend.php.
0
0
Attacker Value
Unknown

CVE-2004-0327

Disclosure Date: November 23, 2004 (last updated February 22, 2025)
Directory traversal vulnerability in functions.php in PhpNewsManager 1.46 allows remote attackers to retrieve arbitrary files via .. (dot dot) sequences in the clang parameter.
0
0
View More Topics  < Previous