2 matches found
CVE-2005-2168
delete.php in Plague News System 0.6 and earlier allows remote unauthenticated attackers to delete news, comments, and shoutbox posts by modifying the id parameter...
CVE-2005-2168
Plague News System 0.6 and earlier is affected. The delete.php file allows remote unauthenticated attackers to delete news, comments, and shoutbox posts by modifying the id parameter, due to an insufficient authorization/authentication check in delete.php. Impact is unauthorized content deletion....