CVE-2007-2372

phpMyNewsletter <0.8 beta5 - Open Redirect

Title source: llm

Description

admin/send_mod.php in Gregory Kokanosky phpMyNewsletter 0.8 beta5 and earlier prints a Location header but does not exit when administrative credentials are missing, which allows remote attackers to compose an e-mail message via a post with the subject, message, format, and list_id fields; and send the message via a direct request for the MsgId value under admin/.

Exploits (1)

exploitdb WORKING POC VERIFIED

by BlackHawk · phpwebappsphp

https://www.exploit-db.com/exploits/3671

View Code ZIP pw:eip

References (2)

[Exploit] http://www.securityfocus.com/bid/23342

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3671

Scores

EPSS 0.0541

EPSS Percentile 90.2%

Details

Status published

Products (1)

gregory_kokanosky/phpmynewsletter < 0.8_beta_5

Published Apr 30, 2007

Tracked Since Feb 18, 2026