RSS   Vulnerabilities for 'Freenews'   RSS

2006-11-03
 
CVE-2006-5716

CWE-Other
 

 
Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include local files via a .. (dot dot) sequence in the chemin parameter, when the aff_news parameter is not set to "1."

 
2006-10-10
 
CVE-2006-5226

CWE-Other
 

 
PHP remote file inclusion vulnerability in moteur/moteur.php in Prologin.fr Freenews 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top