Powerscripts » Powernews : Security Vulnerabilities, CVEs, (Sql injection)
SQL injection vulnerability in news.php in PowerScripts PowerNews 2.5.4, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the newsid parameter.
Max CVSS
6.8
EPSS Score
0.09%
Published
2009-02-23
Updated
2017-09-29
1 vulnerabilities found