Vulnerabilities > CVE-2006-2887 - Unspecified vulnerability in Aspburst Mynewsletter 1.1.2

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

aspburst

exploit available

NVD

Published: 2006-06-07

Updated: 2024-11-21

Summary

Multiple SQL injection vulnerabilities in myNewsletter 1.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the UserName parameter in (1) validatelogin.asp or (2) adminlogin.asp.

Vulnerable Configurations

Part	Description	Count
Application	Aspburst Aspburst Mynewsletter 1.1.2	1

Exploit-Db

description	myNewsletter <= 1.1.2 (adminLogin.asp) Login Bypass Exploit. CVE-2006-2887. Webapps exploit for asp platform
id	EDB-ID:1884
last seen	2016-01-31
modified	2006-06-06
published	2006-06-06
reporter	FarhadKey
source	https://www.exploit-db.com/download/1884/
title	myNewsletter <= 1.1.2 adminLogin.asp Login Bypass Exploit

description	myNewsletter 1.1.2 UserName SQL Injection Vulnerability. CVE-2006-2887. Webapps exploit for php platform
id	EDB-ID:27979
last seen	2016-02-03
modified	2006-06-05
published	2006-06-05
reporter	FarhadKey
source	https://www.exploit-db.com/download/27979/
title	myNewsletter 1.1.2 UserName SQL Injection Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References