CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Easyscripts: >> Tr Script News >> 2.1 Security Vulnerabilities

CVE-2008-1957

SQL injection vulnerability in news.php in Tr Script News 2.1 allows remote attackers to execute arbitrary SQL commands via the nb parameter in voir mode.

CVSS Score

7.5

EPSS Score

0.01

Published

2008-04-25

CVE-2008-1958

Unrestricted file upload vulnerability in the ajout_cat mode in admin/main.php in Tr Script News 2.1 allows remote authenticated users to execute arbitrary code by uploading a file with a .php extension.

CVSS Score

6.5

EPSS Score

0.048

Published

2008-04-25

Page 1

Vulnerabilities

Vulnerable Software

Easyscripts: >> Tr Script News >> 2.1 Security Vulnerabilities

Products

Pricing

Contact Us