FormMail.php 5.0, and possibly other versions, allows remote attackers to read arbitrary files via a full pathname in the ar_file (auto-reply) parameter.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2004-12-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2004-1431
Mitre link : CVE-2004-1431
CVE.ORG link : CVE-2004-1431
JSON object : View
Products Affected
joe_lumbroso
- jacks_formmail.php
CWE