Vulnerabilities > Comscripts > News Evolution

DATE CVE VULNERABILITY TITLE RISK
2006-09-11 CVE-2006-4678 Remote Security vulnerability in Comscripts News Evolution 3.0.3
PHP remote file inclusion vulnerability in News Evolution 3.0.3 allows remote attackers to execute arbitrary PHP code via the _NE[AbsPath] parameter in (1) install.php and (2) migrateNE2toNE3.php.
network
low complexity
comscripts
7.5
7.5