Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bosdev bosnews 4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5835
Install.php in BosDev BosNews 4 and 5 does not require authentication for replacing an existing product installation or creating a new admin account, which allows remote malicious users to cause a denial of service (overwritten files) and possibly obtain administrative access.
Bosdev Bosnews 5
Bosdev Bosnews 4
NA
CVE-2008-4703
SQL injection vulnerability in news.php in BosDev BosNews 4.0 allows remote malicious users to execute arbitrary SQL commands via the article parameter.
Bosdev Bosnews 4
1 EDB exploit
NA
CVE-2007-5834
Cross-site scripting (XSS) vulnerability in BosDev BosNews 4 allows remote malicious users to inject arbitrary web script or HTML via a SCRIPT element in a news post.
Bosdev Bosnews 4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started