Fusionphp Fusion_news
3 CVEs affecting Fusionphp Fusion_news. Latest disclosed: 2006-08-21. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2004-1703 | High | 8.8 | 2004-07-30 | Fusion News 3.6.1 allows remote attackers to add user accounts, if the administrator is logged in, via a comment that contains an img bbcode tag that calls ind… |
CVE-2006-4240 | | 2006-08-21 | PHP remote file inclusion vulnerability in index.php in Fusion News 3.7 allows remote attackers to execute arbitrary PHP code via a URL in the fpath parameter. | |
CVE-2006-3387 | | 2006-07-06 | Directory traversal vulnerability in sources/post.php in Fusion News 1.0, when register_globals is enabled, allows remote attackers to include arbitrary files… |