Filtered by vendor News Manager
Subscriptions
Filtered by product News Manager
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2008-2343 | 1 News Manager | 1 News Manager | 2024-08-07 | N/A |
| News Manager 2.0 allows remote attackers to bypass restrictions and obtain sensitive information via a direct request to (1) db/connect_str.php and (2) login/info.php. | ||||
| CVE-2008-2340 | 1 News Manager | 1 News Manager | 2024-08-07 | N/A |
| Multiple SQL injection vulnerabilities in News Manager 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) lang parameter to (a) advsearch.php, (b) archive.php, and (c) index.php, and the (2) pid parameter to (d) list_tagitems.php. | ||||
| CVE-2008-2342 | 1 News Manager | 1 News Manager | 2024-08-07 | N/A |
| Directory traversal vulnerability in attachments.php in News Manager 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter. | ||||
Page 1 of 1.