CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-0632

PHP remote file inclusion vulnerability in auth.php in PHPNews 1.2.4 and possibly 1.2.3, allows remote attackers to execute arbitrary PHP code via the path parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.037

EPSS Ranking 87.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=110971663824719&w=2
http://marc.info/?l=bugtraq&m=110989169008570&w=2
http://secunia.com/advisories/14449
http://securitytracker.com/id?1013345
http://www.securityfocus.com/bid/12696
http://marc.info/?l=bugtraq&m=110971663824719&w=2
http://marc.info/?l=bugtraq&m=110989169008570&w=2
http://secunia.com/advisories/14449
http://securitytracker.com/id?1013345
http://www.securityfocus.com/bid/12696

Products affected by CVE-2005-0632

Phpnews » Phpnews » Version: 1.2.3

cpe:2.3:a:phpnews:phpnews:1.2.3
Phpnews » Phpnews » Version: 1.2.4

cpe:2.3:a:phpnews:phpnews:1.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0632

Products

Pricing

Contact Us