C-News.Fr C-News vulnerabilities
3 known vulnerabilities affecting c-news.fr/c-news.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-4629P3HIGHCVSS 7.5PoC≤ 1.0.12006-09-08
CVE-2006-4629 [HIGH] CVE-2006-4629: PHP remote file inclusion vulnerability in affichage/commentaires.php in C-News.fr C-News 1.0.1 and
PHP remote file inclusion vulnerability in affichage/commentaires.php in C-News.fr C-News 1.0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
nvd
CVE-2008-2219P4MEDIUMCVSS 4.3PoCv1.0.12008-05-14
CVE-2008-2219 [MEDIUM] CWE-79 CVE-2008-2219: Cross-site scripting (XSS) vulnerability in install.php in C-News.fr C-News 1.0.1 allows remote atta
Cross-site scripting (XSS) vulnerability in install.php in C-News.fr C-News 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the etape parameter.
nvd
CVE-2006-4639P4MEDIUMCVSS 5.1≤ 1.0.12006-09-08
CVE-2006-4639 [MEDIUM] CWE-94 CVE-2006-4639: Multiple PHP remote file inclusion vulnerabilities in C-News.fr C-News 1.0.1 and earlier, when regis
Multiple PHP remote file inclusion vulnerabilities in C-News.fr C-News 1.0.1 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path parameter in (1) formulaire_commentaires.php, (2) affichage/liste_news.php, (3) affichage/news_complete.php, or (4) affichage/pagination.php. NOTE: the pro
nvd