Remote file inclusion

PHP remote file inclusion vulnerability in includes/mailaccess/pop3/core.php in V-Webmail 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the CONFIGpeardir parameter...

CVE-2006-2665

Vulnerability CVE-2006-2665 affects V-Webmail 1.3 via PHP remote file inclusion in includes/mailaccess/pop3/core.php. Attackers can include remote PHP via CONFIG[pear_dir], enabling arbitrary code execution. Affected: V-Webmail 1.3; vulnerability details and an associated exploit exist (e.g., exp...