Powerscripts Powernews — known CVE vulnerabilities
Every CVE whose affected-product data names Powerscripts Powernews, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2008-0742 — CVSS 7.5 (high): Multiple directory traversal vulnerabilities in PowerScripts PowerNews 2.5.6 allow remote attackers to read and include arbitrary files via…
- CVE-2009-0705 — CVSS 6.8 (medium): SQL injection vulnerability in news.php in PowerScripts PowerNews 2.5.4, when magic_quotes_gpc is disabled, allows remote attackers to…