Every CVE whose affected-product data names Webmobo Wbnews, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2007-1288 — CVSS 10.0 (critical): Multiple PHP remote file inclusion vulnerabilities in Webmobo WB News 1.4.1 and earlier allow remote attackers to execute arbitrary PHP…
CVE-2009-4927 — CVSS 7.5 (high): WB News 2.1.2 allows remote attackers to bypass authentication and gain administrative access via a modified WBNEWS cookie, as demonstrated…
CVE-2009-0294 — CVSS 6.8 (medium): Multiple PHP remote file inclusion vulnerabilities in WB News 2.0.1, when register_globals is enabled, allow remote attackers to execute…
CVE-2006-0241 — CVSS 5.0 (medium): Cross-site scripting vulnerability in WBNews 1.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Name…
CVE-2010-1712 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in base/Comments.php in Webmobo WB News 2.3.3 allow remote attackers to inject…