CVE-2007-2708

Feindt Computerservice News <2.0 - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in newsadmin.php in Feindt Computerservice News (News-Script) 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the action parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Mogatil · textwebappsphp
https://www.exploit-db.com/exploits/3920

References (4)

Scores

EPSS 0.7375
EPSS Percentile 98.8%

Details

Status published
Products (1)
feindt_computerservice/news-script 2.0
Published May 16, 2007
Tracked Since Feb 18, 2026