CVE-2005-1876

2005-06-09T00:00:00
ID CVE-2005-1876
Type cve
Reporter NVD
Modified 2016-10-17T23:23:10

Description

Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with administrative privileges to execute arbitrary PHP code via certain inputs that are injected into a template (.tpl) file.