Filtered by vendor Powie Subscriptions
Filtered by product Pnews Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2008-4347 1 Powie 1 Pnews 2024-11-21 N/A
SQL injection vulnerability in newskom.php in Powie pNews 2.03 allows remote attackers to execute arbitrary SQL commands via the newsid parameter.
CVE-2008-2673 1 Powie 1 Pnews 2024-11-21 N/A
SQL injection vulnerability in index.php in Powie pNews 2.08 and 2.10, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the shownews parameter.