Security Advisory

CVE-2005-1876

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-06-07 04:00:00

Last updated 2025-01-16 19:13:11

Assigner mitre

State PUBLISHED

Description

Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with administrative privileges to execute arbitrary PHP code via certain inputs that are injected into a template (.tpl) file.

← Browse all CVEs View on cve.org ↗