Webinsta Mailing List Manager vulnerabilities
2 known vulnerabilities affecting webinsta/mailing_list_manager.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-4209P3HIGHCVSS 7.5PoCv1.3e2006-08-17
CVE-2006-4209 [HIGH] CVE-2006-4209: PHP remote file inclusion vulnerability in install3.php in WEBInsta Mailing List Manager 1.3e allows
PHP remote file inclusion vulnerability in install3.php in WEBInsta Mailing List Manager 1.3e allows remote attackers to execute arbitrary PHP code via a URL in the cabsolute_path parameter.
nvd
CVE-2011-3816P4MEDIUMCVSS 5.0v1.3e2011-09-24
CVE-2011-3816 [MEDIUM] CWE-200 CVE-2011-3816: WEBinsta mailing list manager 1.3e allows remote attackers to obtain sensitive information via a dir
WEBinsta mailing list manager 1.3e allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by install/install3.php and certain other files.
nvd