MidnightBSD

Advisories for matthew_dingley

CVE-2006-1755 HIGH

SQL injection vulnerability in admin.php in MD News 1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
matthew_dingley md_news 1
CVE-2006-1756 HIGH

MD News 1 allows remote attackers to bypass authentication via a direct request to a script in the Administration Area.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
matthew_dingley md_news 1