CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6786

Open Newsletter 2.5 and earlier allows remote authenticated administrators to execute arbitrary PHP code by inserting the code into the email parameter to (1) subscribe.php or (2) unsubscribe.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.047

EPSS Ranking 89.1%

CVSS Severity

CVSS v2 Score 6.5

References

http://www.securityfocus.com/bid/21775
https://www.exploit-db.com/exploits/2981
http://www.securityfocus.com/bid/21775
https://www.exploit-db.com/exploits/2981

Products affected by CVE-2006-6786

Open Newsletter » Open Newsletter » Version: Any

cpe:2.3:a:open_newsletter:open_newsletter:*
Open Newsletter » Open Newsletter » Version: 2.0

cpe:2.3:a:open_newsletter:open_newsletter:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6786

Products

Pricing

Contact Us