SQL injection vulnerability in admin.php in MD News 1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
8.3AI Score
0.079EPSS
MD News 1 allows remote attackers to bypass authentication via a direct request to a script in the Administration Area.
6.8AI Score
0.009EPSS