Vulnerabilities > Softnews Media Group > Datalife Engine > 4.1

DATE	CVE	VULNERABILITY TITLE	RISK
2007-03-13	CVE-2007-1424	Remote File Include vulnerability in Softnews Media Group Datalife Engine 4.1/5.5 Multiple PHP remote file inclusion vulnerabilities in Softnews Media Group DataLife Engine allow remote attackers to execute arbitrary PHP code via a URL in the root_dir parameter to (1) init.php and (2) Ajax/editnews.php. network low complexity softnews-media-group	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.