PHP remote file inclusion vulnerability in includes/mailaccess/pop3.php in V-Webmail 1.5 up to and including 1.6.4 allows remote malicious users to execute arbitrary PHP code via a URL in the CONFIG[pear_dir] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
v-webmail v-webmail |