Freenews: >> Freenews Security Vulnerabilities
Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include local files via a .. (dot dot) sequence in the chemin parameter, when the aff_news parameter is not set to "1."
CVSS Score
5.0
EPSS Score
0.052
Published
2006-11-04
PHP remote file inclusion vulnerability in moteur/moteur.php in Prologin.fr Freenews 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.
CVSS Score
7.5
EPSS Score
0.054
Published
2006-10-10