2 matches found
CVE-2007-2371
admin/index.php in Gregory Kokanosky phpMyNewsletter 0.8 beta5 and earlier provides access to configuration modification before login, which allows remote attackers to cause a denial of service loss of configuration data, and possibly perform direct static code injection, via a saveGlobalconfig...
CVE-2007-2371
CVE-2007-2371 affects phpMyNewsletter (Gregory Kokanosky) ≤ 0.8 beta5. The admin/index.php endpoint allows configuration modifications before authentication, enabling remote attackers to cause a denial of service (loss of configuration data) and potentially perform direct static code injection vi...