RSS   Vulnerabilities for 'Mynewsletter'   RSS

2006-06-07
 
CVE-2006-2887

CWE-Other
 

 
Multiple SQL injection vulnerabilities in myNewsletter 1.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the UserName parameter in (1) validatelogin.asp or (2) adminlogin.asp.

 


Copyright 2024, cxsecurity.com

 

Back to Top