CVE-2002-2143

MySimple News 1.0 - Info Disclosure

Title source: llm

Description

The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.html.

Exploits (1)

exploitdb WRITEUP VERIFIED

by frog · textwebappsphp

https://www.exploit-db.com/exploits/21901

View Code ZIP pw:eip

References (3)

[Exploit] http://www.securityfocus.com/bid/5866

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/293871

[Third Party Advisory] http://www.iss.net/security_center/static/10298.php

Scores

EPSS 0.0538

EPSS Percentile 89.9%

Classification

Status draft

Affected Products (1)

mysimplenews/mysimplenews

Timeline

Published Dec 31, 2002

Tracked Since Feb 18, 2026