Phpnews : Security Vulnerabilities, CVEs, Published In 2004
SQL injection vulnerability in PHPNews 1.2.3 allows remote attackers to execute arbitrary SQL commands via the mid parameter to sendtofriend.php.
Max CVSS
7.5
EPSS Score
0.65%
Published
2004-12-31
Updated
2017-07-11
1 vulnerabilities found