GCVE - cpe:2.3:a:adminnewstools:admin_news

Approved changes feed: RSS · Atom

cpe:2.3:a:adminnewstools:admin_news_tools:2.5:*:*:*:*:*:*:*

part: a version: 2.5 update: *

Vendor	Adminnewstools (`ec6c4ebc-37d0-53e6-8102-a50c3ac2c77c`)
Product	Admin News Tools (`4bcffc22-c3a8-5929-9873-599f95ea4552`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2009-2558`	vulnerable	2026-06-08 04:51:29.156123	Details available system/message.php in Admin News Tools 2.5 does not properly restrict access, which allows remote attackers to post news messages via a direct request. Published: 2009-07-21T17:00:00.000Z Updated: 2024-08-07T05:52:15.226Z Open on db.gcve.eu Reference links http://www.exploit-db.com/exploits/9161 http://secunia.com/advisories/35842 https://exchange.xforce.ibmcloud.com/vulnerabilities/51780	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2557`	vulnerable	2026-06-08 04:51:29.155699	Details available Directory traversal vulnerability in system/download.php in Admin News Tools 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the fichier parameter. Published: 2009-07-21T17:00:00.000Z Updated: 2024-08-07T05:52:15.290Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/504949/100/0/threaded http://www.exploit-db.com/exploits/9153 http://secunia.com/advisories/35842 http://osvdb.org/55856	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.