2 matches found
MySimpleNews 1.0 PHP Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5865/info MySimpleNews allows users to enter news articles through a web interface. It will allow PHP code to be injected into URI parameters of the 'users.php' script, which will be stored into a MySimpleNews file...
CVE-2002-2320
MySimpleNews 1.0 allows remote attackers to delete arbitrary email messages via a direct request to vider.php3...