3 matches found
EUVD-2002-1866
Malware in sbrugna...
phpMyNewsletter
Informations : °°°°°°°°°°°°°° Product : phpMyNewsletter Tested version : 0.6.10 Website : http://gregory.kokanosky.free.fr/phpmynewsletter/ Problem : include file PHP code : °°°°°°°°°° ---- /include/customize.php ---- ? $langfile = $l; include $l; ? ---- /include/customize.php ---- Exploit :...
phpMyNewsletter 0.6.10 - Remote File Inclusion
phpMyNewsletter 0.6.10 - Remote File Inclusion source: https://www.securityfocus.com/bid/5886/info A vulnerability has been discovered in phpMyNewsLetter. Reportedly, it is possible to pass an attacker-specified file include location to a CGI paramter of the 'customize.php' script. This may allow...