CVE-2006-6785
CVE-2006-6785 affects Open Newsletter 2.5 and earlier. The (1) settings.php and (2) subscribers.php scripts do not exit after authentication fails, enabling remote attackers to perform unauthorized administrative actions and, in combination with another vulnerability, to execute arbitrary code. A...