27 matches found
EUVD-2006-4279
Malware in sbrugna...
PHlyMail Lite <= 3.4.4 (mod.listmail.php) Remote Include Vulnerability
No description provided by source...
PHlyMail Lite <= 3.4.4 (folderprops.php) Remote Include Vulnerability (2)
No description provided by source. --------------------------------------------------------------------------- PHlyMail Lite = 3.4.4 Build 3.04.04 PMpathhandler Remote File Include Vulnerability 2 --------------------------------------------------------------------------- Discovered By Kw3RLn...
phlyLabs phlyMail Lite 4.03.04 (go param) Open Redirect Vulnerability
No description provided by source. phlyLabs phlyMail Lite 4.03.04 go param Open Redirect Vulnerability Vendor: phlyLabs Product web page: http://www.phlymail.com Affected version: Lite 4.03.04 Summary: phlyMail offers you an interface in the browser to have access to your emails, contacts,...
phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities
No description provided by source. ?!-- phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities Vendor: phlyLabs Product web page: http://www.phlymail.com Affected version: Lite 4.03.04 Summary: phlyMail offers you an interface in the browser to have access to your emails,...
phlyLabs phlyMail Lite 4.03.04 XSS / Path Disclosure
phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities input type="hidden" name="M...
phlyLabs phlyMail Lite 4.03.04 Open Redirect
phlyLabs phlyMail Lite 4.03.04 go param Open Redirect Vulnerability Vendor: phlyLabs Product web page: http://www.phlymail.com Affected version: Lite 4.03.04 Summary: phlyMail offers you an interface in the browser to have access to your emails, contacts, appointments, tasks, files and bookmakrs...
phlyLabs phlyMail Lite 4.03.04 - Full Path Disclosure Persistent Cross-Site Scripting
phlyLabs phlyMail Lite 4.03.04 - Full Path Disclosure Persistent Cross-Site Scripting phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities form method="POST" action="http://localhost/config.php?action=user...
phlyLabs phlyMail Lite 4.03.04 - go Open Redirect
phlyLabs phlyMail Lite 4.03.04 - go Open Redirect phlyLabs phlyMail Lite 4.03.04 go param Open Redirect Vulnerability Vendor: phlyLabs Product web page: http://www.phlymail.com Affected version: Lite 4.03.04 Summary: phlyMail offers you an interface in the browser to have access to your emails,...
phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities
Summary phlyMail offers you an interface in the browser to have access to your emails, contacts, appointments, tasks, files and bookmakrs from anyhwere, where you have internet access. This can be your home, workplace, train station, abroad, offroad, in the woods or your own backyard. Description...
phlyLabs phlyMail Lite 4.03.04 - Full Path Disclosure / Persistent Cross-Site Scripting
phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities input type="hi...
phlyLabs phlyMail Lite 4.03.04 - 'go' Open Redirect
phlyLabs phlyMail Lite 4.03.04 go param Open Redirect Vulnerability Vendor: phlyLabs Product web page: http://www.phlymail.com Affected version: Lite 4.03.04 Summary: phlyMail offers you an interface in the browser to have access to your emails, contacts, appointments, tasks, files and bookmakrs...
PHlyMail Lite Mod.Listmail.PHP远程文件包含漏洞
PHlyMail Lite是一款基于PHP的WEB邮件程序。 PHlyMail Lite不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'mod.listmail.php'脚本对用户提交的'PMpathhandler'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 PHlyMail PHlyMail 3.3.4 PHlyMail PHlyMail 3.0.2 .07 PHlyMail PHlyMail 3.0.2 .01 PHlyMail PHlyMail 3.0.2 .00 暂无...
CVE-2006-4429
PHP remote file inclusion vulnerability in handlers/email/mod.output.php in PHlyMail Lite 3.4.4 and earlier Build 3.04.04 allows remote attackers to execute arbitrary PHP code via a URL in the PMpathhandler parameter, a different vector than CVE-2006-4291. NOTE: This issue has been disputed by a...
CVE-2006-4429
PHlyMail Lite 3.4.4 and earlier (Build 3.04.04) are vulnerable to PHP remote file inclusion via a URL parameter in PM [path][handler], affecting handlers/email/mod.listmail.php (CVE-2006-4291) and handlers/email/mod.output.php (CVE-2006-4429). The issue enables arbitrary PHP code execution. The v...
PT-2006-5230 · Phlymail · Phlymail Lite
Name of the Vulnerable Software and Affected Versions: PHlyMail Lite versions 3.4.4 and earlier Description: A remote file inclusion issue allows attackers to execute arbitrary PHP code via a URL in the PM pathhandler parameter. This is a different attack vector. Note that this issue has been...
phlymail.txt
PHlyMail Lite PMpathlib= Remote File Include Vulnerability ------------------------------------------------------------------------------------------------------ - Script name: PHlyMail Lite v. 3.4.4 - Script site: http://phlymail.de...
PHlyMail Lite [PM_[path][lib]=] Remote File Include Vulnerability
PHlyMail Lite PMpathlib= Remote File Include Vulnerability ------------------------------------------------------------------------------------------------------ - Script name: PHlyMail Lite v. 3.4.4 - Script site: http://phlymail.de...
CVE-2006-4291
PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and earlier Build 3.04.04 allows remote attackers to execute arbitrary PHP code via a URL in the PMpathhandler parameter...
PHlyMail Lite 3.4.4 - folderprops.php Remote File Inclusion (2)
PHlyMail Lite 3.4.4 - folderprops.php Remote File Inclusion 2 --------------------------------------------------------------------------- PHlyMail Lite = 3.4.4 Build 3.04.04 PMpathhandler Remote File Include Vulnerability 2 -------------------------------------------------------------------------...