Freenews

CVEs (2)

• CVE-2006-5716Nov 4, 2006
  Freenews

  Freenews
  risk 0.03cvss —epss 0.03

  Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include local files via a .. (dot dot) sequence in the chemin parameter, when the aff_news parameter is not set to "1."

• CVE-2006-5226Oct 10, 2006
  Freenews

  Freenews
  risk 0.03cvss —epss 0.03

  PHP remote file inclusion vulnerability in moteur/moteur.php in Prologin.fr Freenews 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.