Vulnerabilities (CVE)

Filtered by vendor Freenews Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-5716 1 Freenews 1 Freenews 2024-02-28 5.0 MEDIUM N/A
Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include local files via a .. (dot dot) sequence in the chemin parameter, when the aff_news parameter is not set to "1."
CVE-2006-5226 1 Freenews 1 Freenews 2024-02-28 7.5 HIGH N/A
PHP remote file inclusion vulnerability in moteur/moteur.php in Prologin.fr Freenews 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.