Fscripts Fantastic News — known CVE vulnerabilities
Every CVE whose affected-product data names Fscripts Fantastic News, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2005-3846 — CVSS 7.5 (high): SQL injection vulnerability in news.php in Fantastic News 2.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via…
CVE-2006-1154 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in archive.php in Fantastic News 2.1.2 allows remote attackers to include arbitrary files via the…
CVE-2006-4285 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in news.php in Fantastic News 2.1.3 and earlier allows remote attackers to execute arbitrary PHP…
CVE-2006-4671 — CVSS 6.8 (medium): PHP remote file inclusion vulnerability in headlines.php in Fantastic News 2.1.4, and possibly earlier, allows remote attackers to execute…
CVE-2006-0972 — CVSS 5.0 (medium): SQL injection vulnerability in news.php in Tony Baird Fantastic News 2.1.1 allows remote attackers to execute arbitrary SQL commands via…