Approved changes feed: RSS · Atom

cpe:2.3:a:1two:1two_news:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor1Two (45159f43-c242-537b-9ef4-7622b9b580b5)
Product1Two News (9de02820-906c-58d9-a71d-0306a9f42c0c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2005-1583 vulnerable 2026-06-08 04:48:26.974205 Details available
1Two News 1.0 allows remote attackers to (1) delete images for new stories via a direct request to admin/delete.php or (2) upload arbitrary images via a direct request to admin/upload.php.
Published: 2005-05-14T04:00:00.000Z
Updated: 2024-09-16T20:32:26.213Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-1582 vulnerable 2026-06-08 04:48:26.973879 Details available
Cross-site scripting (XSS) vulnerability in index.php for 1Two News 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) nom, (2) email, (3) siteweb, or (4) commentaire variables.
Published: 2005-05-14T04:00:00.000Z
Updated: 2024-09-17T01:26:00.151Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.