Easyscripts Tr Script News : Security vulnerabilities, CVEs

Copy

CVE-2008-1958

Unrestricted file upload vulnerability in the ajout_cat mode in admin/main.php in Tr Script News 2.1 allows remote authenticated users to execute arbitrary code by uploading a file with a .php extension.

Max CVSS

6.5

EPSS Score

0.58%

Published

2008-04-25

Updated

2017-09-29

CVE-2008-1957

SQL injection vulnerability in news.php in Tr Script News 2.1 allows remote attackers to execute arbitrary SQL commands via the nb parameter in voir mode.

Max CVSS

7.5

EPSS Score

0.25%

Published

2008-04-25

Updated

2017-09-29

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!