← CVECheck
HomeVulnerabilities

CVE-2004-1660 — HIGH severity vulnerability (PHP remote file inclusion vulnerability in CuteNews 1.3.6 an)

PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via the cutepath parameter to (1) show_archives.php or (2) show_news.php.

CVE IDCVE-2004-1660
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-08-30
Last modified2026-04-16
DescriptionPHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via the cutepath parameter to (1) show_archives.php or (2) show_news.php.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →