EUVD-2009-0739

Malware in sbrugna...

EUVD-2007-2009

Malware in sbrugna...

EUVD-2007-2513

Malware in sbrugna...

EUVD-2008-0733

Malware in sbrugna...

EUVD-2006-2209

Malware in sbrugna...

CVE-2008-0723

Cross-site scripting XSS vulnerability in mynews.inc.php in MyNews 1.6.4, and other earlier 1.6.x versions, allows remote attackers to inject arbitrary web script or HTML via the hash parameter in an admin action to index.php, a different vulnerability than CVE-2006-2208.1...

MyNews <= 4.2.2 (themefunc.php) Remote File Include Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= MyNews 4.2.2 = Remote File Include Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Discovered by GolDMMahmnoodali...

MyNews 1.6.x 'hash' Parameter Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27652/info MyNews is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

MyNews 4.2.2 Week_Events.PHP Remote File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register import re class TestPOCPOCBase: vulID = '83309' ssvid version = '1.0' author = 'kikay' vulDate = '2007-04-12' createDate ...

MyNews 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/17823/info MyNews is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

MyNews 1.0 CMS - SQL Injection, Local File Inclusion and XSS Vulnerabilities

No description provided by source...

MyNews 0.10 AuthACC SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24621/info MyNews is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromi...

MyNews 1.2 'basepath' Parameter Multiple Remote File Include Vulnerabilities

MyNews 1.2 is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user- supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to execute arbitrary script code in the context of the Web server...

MyNews <= 1.2 Multiple RFI Vulnerabilities - Active Check

MyNews 1.2 is prone to multiple remote file inclusion RFI vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

MyNews 1.2 Remote File Inclusion

MyNews v1.2 Remote File Inclusion Vulnerability Found by : kurdish hackers team C0ntact : pshela at YaHoo .com Groups : Kurd-Team site : www.kurdteam.org ======================================================= +++++++++++++++++++ Script information+++++++++++++++++...

MyNews 1.6.5 Shell Upload

============================================================================================ o MyNews Abritary File Upload Vulnerability Software : MyNews 1.6.5 Vendor : http://www.planetluc.com/ Author : NoGe Contact : nogedotcodeatgmaildotcom Home : http://evilc0de.blogspot.com/...

MyNews CMS 1.0 Cross Site Scripting / Local File Inclusion / SQL Injection

MyNews v1.0 CMS - Sql Injection, local file inclusion and XSS Vulnerabilities Found by: mrme - http://net-ninja.net/ Advisory: http://www.corelan.be:8800/advisories.php?id=10-040 Dork: "Corelan Security Team" Homepage: http://mynews.magtrb.com/ Download:...

MyNews CMS 1.0 - SQL Injection / Local File Inclusion / Cross-Site Scripting

MyNews v1.0 CMS - Sql Injection, local file inclusion and XSS Vulnerabilities Found by: mrme - http://net-ninja.net/ Advisory: http://www.corelan.be:8800/advisories.php?id=10-040 Dork: "Corelan Security Team" Homepage: http://mynews.magtrb.com/ Download:...

MyNews CMS 1.0 - SQL Injection Local File Inclusion Cross-Site Scripting

MyNews CMS 1.0 - SQL Injection Local File Inclusion Cross-Site Scripting MyNews v1.0 CMS - Sql Injection, local file inclusion and XSS Vulnerabilities Found by: mrme - http://net-ninja.net/ Advisory: http://www.corelan.be:8800/advisories.php?id=10-040 Dork: "Corelan Security Team" Homepage:...

MyNews v1.0 CMS - Sql Injection, LFI and XSS Vulnerabilities

Exploit for php platform in category web applications ============================================================ MyNews v1.0 CMS - Sql Injection, LFI and XSS Vulnerabilities ============================================================ MyNews v1.0 CMS - Sql Injection, local file inclusion and XS...