Filtered by vendor Skintech Subscriptions
Filtered by product Phpnewsmanager Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-1560 1 Skintech 1 Phpnewsmanager 2024-11-21 N/A
Multiple SQL injection vulnerabilities in SkinTech phpNewsManager 1.48 allow remote attackers to execute arbitrary SQL commands via unspecified parameters, possibly (1) id and (2) topicid, in (a) browse.php, (b) category.php, (c) gallery.php, (d) poll.php, and (e) possibly other unspecified scripts. NOTE: portions of the description details are obtained from third party information.
CVE-2004-0327 1 Skintech 1 Phpnewsmanager 2024-11-20 N/A
Directory traversal vulnerability in functions.php in PhpNewsManager 1.46 allows remote attackers to retrieve arbitrary files via .. (dot dot) sequences in the clang parameter.