SQL Injection and XSS Vulnerabilities in MWNewsletter
Summary for SQL Injection and XSS Vulnerabilities in MWNewsletter
- Vulnerability
- SQL Injection and XSS Vulnerabilities in MWNewsletter
- Discovered
- 2006.04.06
- Last Update
- 2006.04.16 Exploitation code published
- ID
- EV0123
- CVE
- CVE-2006-1690 CVE-2006-1691 CVE-2006-1692
- Risk Level
- medium
- Type
- Multiple Vulnerabilities
- Status
- Unpatched. No reply from developer(s)
- Vendor
- Manic Web
- Vulnerable Software
- MWNewsletter
- Version
- 1.0.0b
- PoC/Exploit
- Available
- Solution
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
Order Source Code Audit
Prevent attacks by source code analysis of your website done by eVuln team.The work will be done by experts in website security.