RSS   Vulnerabilities for 'Md news'   RSS

2006-04-12
 
CVE-2006-1756

CWE-Other
 

 
MD News 1 allows remote attackers to bypass authentication via a direct request to a script in the Administration Area.

 
 
CVE-2006-1755

CWE-Other
 

 
SQL injection vulnerability in admin.php in MD News 1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top