Vulnerabilities > Wogan MAY

DATE CVE VULNERABILITY TITLE RISK
2008-08-07 CVE-2008-3508 Permissions, Privileges, and Access Controls vulnerability in Wogan MAY Litenews 0.1/1.1/1.2
LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie.
network
low complexity
wogan-may CWE-264
5.0
2008-08-07 CVE-2008-3507 SQL Injection vulnerability in Wogan MAY Litenews 0.1/1.1/1.2
SQL injection vulnerability in index.php in LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.
network
low complexity
wogan-may CWE-89
7.5