Vulnerabilities > Frank Mancuso > Mynews > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-06-26 | CVE-2007-2520 | SQL Injection vulnerability in Frank Mancuso Mynews 0.10 SQL injection vulnerability in admin.php in MyNews 0.10, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the authacc cookie. network frank-mancuso | 6.8 |