cbcvebase.
CVE-2006-3346
published 2006-07-03

CVE-2006-3346: SQL injection vulnerability in tree.php in MyNewsGroups 0.6 allows remote attackers to execute arbitrary SQL commands via the grp_id parameter.

PriorityP433high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.31%
67.1th percentile
SQL injection vulnerability in tree.php in MyNewsGroups 0.6 allows remote attackers to execute arbitrary SQL commands via the grp_id parameter.

Affected

1 ranges
VendorProductVersion rangeFixed in
carlos_sanchez_vallemynewsgroups
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.