Lucene search
Bosnews Security Vulnerabilities
cve
SQL injection vulnerability in news.php in BosDev BosNews 4.0 allows remote attackers to execute arbitrary SQL commands via the article...
9.3AI Score
0.001EPSS
2008-10-23 05:17 PM
22
cve
Cross-site scripting (XSS) vulnerability in BosDev BosNews 4 allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element in a news...
6.2AI Score
0.002EPSS
2007-11-05 07:46 PM
20
cve
Install.php in BosDev BosNews 4 and 5 does not require authentication for replacing an existing product installation or creating a new admin account, which allows remote attackers to cause a denial of service (overwritten files) and possibly obtain administrative...
7.9AI Score
0.003EPSS
2007-11-05 07:46 PM
15