Edreamers Ednews — known CVE vulnerabilities
Every CVE whose affected-product data names Edreamers Ednews, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2008-5820 — CVSS 7.5 (high): SQL injection vulnerability in eDNews_view.php in eDreamers eDNews 2 allows remote attackers to execute arbitrary SQL commands via the…
- CVE-2008-5819 — CVSS 6.8 (medium): Directory traversal vulnerability in eDNews_archive.php in eDreamers eDNews 2, when magic_quotes_gpc is disabled, allows remote attackers…