Wogan May: >> Litenews Security Vulnerabilities
SQL injection vulnerability in index.php in LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.
CVSS Score
7.5
EPSS Score
0.001
Published
2008-08-07
LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie.
CVSS Score
5.0
EPSS Score
0.032
Published
2008-08-07