PHP remote file inclusion vulnerability in moteur/moteur.php in Prologin.fr Freenews 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.
Max CVSS
7.5
EPSS Score
8.56%
Published
2006-10-10
Updated
2018-10-17
Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include local files via a .. (dot dot) sequence in the chemin parameter, when the aff_news parameter is not set to "1."
Max CVSS
5.0
EPSS Score
3.66%
Published
2006-11-04
Updated
2018-10-17
2 vulnerabilities found