CyberSec.Space Logo
Back to CVE Browser

CVE-2006-1276

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0070%
EPSS Percentile22.59th
PublishedMar 19, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

admin.php in Himpfen Consulting Company PHP SimpleNEWS 1.0.0 allows remote attackers to bypass authentication by setting the admin parameter in a cookie.

Affected Platforms (CPE)

πŸ“¦
Himpfen Consulting

Php Simplenews

<= 1.0.0

References & Advisories

πŸ”— http://evuln.com/vulns/94/summary.html
πŸ”— http://secunia.com/advisories/19195
πŸ”— http://securityreason.com/securityalert/613
πŸ”— http://www.osvdb.org/23803
πŸ”— http://www.securityfocus.com/archive/1/428427
πŸ”— http://www.securityfocus.com/bid/17186
πŸ”— http://www.vupen.com/english/advisories/2006/0913
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/25177

Related Vulnerabilities

CVE-2012-55376.0

The Simplenews Scheduler module 6.x-2.x before 6.x-2.4 for Drupal allows remote authenticated users with the "send scheduled newsl...

CVE-2006-623510.0

A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to ...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...

CVE-2006-021810.0

Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to...