Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php arena panews 2.0.4b vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-0647
admin_setup.php in paNews 2.0.4b allows remote malicious users to inject arbitrary PHP code via the (1) $form[comments] or (2) $form[autoapprove] parameters, which are written to config.php.
Php Arena Panews 2.0.4b
1 EDB exploit
7.5
CVSSv2
CVE-2005-0646
SQL injection vulnerability in auth.php in paNews 2.0.4b allows remote malicious users to execute arbitrary SQL via the mysql_prefix parameter.
Php Arena Panews 2.0.4b
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started