CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2011-3816
https://notcve.org/view.php?id=CVE-2011-3816
WEBinsta mailing list manager 1.3e allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by install/install3.php and certain other files. WEBinsta mailing list manager v1.3e permite a atacantes remotos obtener información sensible a través de una petición directa a un archivo .php, lo que revela la ruta de instalación en un mensaje de error, como se demostró con install/install3.php y algunos otros archivos. • http://code.google.com/p/inspathx/source/browse/trunk/paths_vuln/%21_README http://code.google.com/p/inspathx/source/browse/trunk/paths_vuln/webinsta-mail-list-1.3e http://www.openwall.com/lists/oss-security/2011/06/27/6 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 10%CPEs: 1EXPL: 1CVE-2006-4209 – WEBInsta MM 1.3e - 'cabsolute_path' Remote File Inclusion
https://notcve.org/view.php?id=CVE-2006-4209
PHP remote file inclusion vulnerability in install3.php in WEBInsta Mailing List Manager 1.3e allows remote attackers to execute arbitrary PHP code via a URL in the cabsolute_path parameter. Vulnerabilidad de inclusión remota de archivo en PHP en install3.php en WEBInsta Mailing List Manager 1.3e permite a atacantes remotos ejecutar código PHP de su elección mediante una URL en el parámetro cabsolute_path. • https://www.exploit-db.com/exploits/2171 http://securityreason.com/securityalert/1404 http://www.bb-pcsecurity.de/Websecurity/311/org/WEBInsta_Mailing_list_manager_%28cabsolute_path%29_1.3e_RFI.htm http://www.securityfocus.com/archive/1/442983/100/0/threaded http://www.securityfocus.com/bid/19477 https://exchange.xforce.ibmcloud.com/vulnerabilities/28340 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2004-2744
https://notcve.org/view.php?id=CVE-2004-2744
Unspecified vulnerability in Tincan Limited PHPlist before 2.8.12 has unknown impact and attack vectors, related to a "security update release." • http://secunia.com/advisories/12994 http://securitytracker.com/id?1011958 http://sourceforge.net/project/shownotes.php?release_id=277981 http://www.osvdb.org/11172 https://exchange.xforce.ibmcloud.com/vulnerabilities/17883 •