Vscripts : Security Vulnerabilities, CVEs, CVSS score >= 9
Direct static code injection vulnerability in admin/config.php in vscripts (aka Kuba Kunkiewicz) VNews 1.2 allows remote authenticated administrators to execute code by inserting the code into variables that are stored in admin/config.php.
Max CVSS
9.0
EPSS Score
2.34%
Published
2006-03-30
Updated
2018-10-18
1 vulnerabilities found