Carlos Sanchez Valle Mynewsgroups vulnerabilities
3 known vulnerabilities affecting carlos_sanchez_valle/mynewsgroups.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-3966P3HIGHCVSS 7.5PoC≤ 0.6b2006-08-01
CVE-2006-3966 [HIGH] CWE-94 CVE-2006-3966: PHP remote file inclusion vulnerability in /lib/tree/layersmenu.inc.php in the PHP Layers Menu 2.3.5
PHP remote file inclusion vulnerability in /lib/tree/layersmenu.inc.php in the PHP Layers Menu 2.3.5 package for MyNewsGroups :) 0.6b and earlier allows remote attackers to execute arbitrary PHP code via a URL in the myng_root parameter.
nvd
CVE-2006-3346P4HIGHCVSS 7.5v0.62006-07-03
CVE-2006-3346 [HIGH] CVE-2006-3346: SQL injection vulnerability in tree.php in MyNewsGroups 0.6 allows remote attackers to execute arbit
SQL injection vulnerability in tree.php in MyNewsGroups 0.6 allows remote attackers to execute arbitrary SQL commands via the grp_id parameter.
nvd
CVE-2002-1853P4MEDIUMCVSS 4.3v0.4v0.4.12002-12-31
CVE-2002-1853 [MEDIUM] CVE-2002-1853: Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to in
Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the subject of a newsgroup post, which is not properly handled by (1) myarticles.php, (2) search.php, (3) stats.php, or (4) standard.lib.php.
nvd