Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p-news p-news 1.17 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-6888
P-News 1.16 and 1.17 store sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the administrative account name and password hash via a direct request for db/user.dat.
P-news P-news 1.16
P-news P-news 1.17
1 EDB exploit
7.5
CVSSv2
CVE-2006-5434
PHP remote file inclusion vulnerability in p-news.php in P-News 1.16 and 1.17 allows remote malicious users to execute arbitrary PHP code via a URL in the pn_lang parameter.
P-news P-news 1.16
P-news P-news 1.17
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started