Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p-news p-news 1.16 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5434
PHP remote file inclusion vulnerability in p-news.php in P-News 1.16 and 1.17 allows remote malicious users to execute arbitrary PHP code via a URL in the pn_lang parameter.
P-news P-news 1.16
P-news P-news 1.17
1 EDB exploit
NA
CVE-2006-6888
P-News 1.16 and 1.17 store sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the administrative account name and password hash via a direct request for db/user.dat.
P-news P-news 1.17
P-news P-news 1.16
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started