Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2006-2842

Published: 06/06/2006 Updated: 11/04/2024
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Squirrelmail

Vulnerability Summary

PHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and previous versions, if register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the plugins array parameter. NOTE: this issue has been disputed by third parties, who state that Squirrelmail provides prominent warnings to the administrator when register_globals is enabled. Since the varieties of administrator negligence are uncountable, perhaps this type of issue should not be included in CVE. However, the original developer has posted a security advisory, so there might be relevant real-world environments under which this vulnerability is applicable

Vulnerable Product Search on Vulmon Subscribe to Product

squirrelmail squirrelmail 1.4.2

squirrelmail squirrelmail 1.0.5

squirrelmail squirrelmail 1.4.6_rc1

squirrelmail squirrelmail 1.4.3_r3

squirrelmail squirrelmail 1.2.7

squirrelmail squirrelmail 1.2.0

squirrelmail squirrelmail 1.2.9

squirrelmail squirrelmail 1.4.3_rc1

squirrelmail squirrelmail 1.2.2

squirrelmail squirrelmail 1.4.4_rc1

squirrelmail squirrelmail 1.4.3

squirrelmail squirrelmail 1.2.1

squirrelmail squirrelmail 1.4.1

squirrelmail squirrelmail 1.4.0

squirrelmail squirrelmail 1.4

squirrelmail squirrelmail 1.2.4

squirrelmail squirrelmail 1.2.3

squirrelmail squirrelmail 1.4.3a

squirrelmail squirrelmail

squirrelmail squirrelmail 1.0.4

squirrelmail squirrelmail 1.2.6

squirrelmail squirrelmail 1.4.4

squirrelmail squirrelmail 1.2.10

squirrelmail squirrelmail 1.2.5

squirrelmail squirrelmail 1.2.8

squirrelmail squirrelmail 1.2.11

squirrelmail squirrelmail 1.4.5

Vendor Advisories

Debian CVElist Bug Report Logs: squirrelmail redirect.php local file include vulnerability
Debian Bug report logs - #373731 squirrelmail redirectphp local file include vulnerability Package: squirrelmail; Maintainer for squirrelmail is Jeroen van Wolffelaar <jeroen@wolffelaarnl>; Source for squirrelmail is src:squirrelmail (PTS, buildd, popcon) Reported by: Oliver Paulus <oliver@code-projectorg> Date: T ...
Debian CVElist Bug Report Logs: squirrelmail: CVE-2006-3174: cross-site scripting in search.php when register_globals is on
Debian Bug report logs - #375782 squirrelmail: CVE-2006-3174: cross-site scripting in searchphp when register_globals is on Package: squirrelmail; Maintainer for squirrelmail is Jeroen van Wolffelaar <jeroen@wolffelaarnl>; Source for squirrelmail is src:squirrelmail (PTS, buildd, popcon) Reported by: Alec Berryman <alec ...

Exploits

Exploit DB: Squirrelmail 1.4.x - 'Redirect.php' Local File Inclusion
source: wwwsecurityfocuscom/bid/18231/info SquirrelMail is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input A successful exploit may allow unauthorized users to view files and to execute local scripts; other attacks are also possible wwwexamplecom/[squirrelmail dir]/src/red ...

Github Repositories

https://github.com/karthi-the-hacker/CVE-2006-2842

CVE-2006-2842 is a powerful scanner for bug bounty hunters and penetration testers to discover vulnerabilities in their web applications.

Badges License MIT Installation Install cve-2006-2842 with npm npm install cve-2006-2842 -g Usage Example for single url cve-2006-2842 -u examplecom Usage Example for list of urls cve-2006-2842 -l urlstxt -o outtxt Screenshots Help menu Get al

References

NVD-CWE-Otherhttp://squirrelmail.cvs.sourceforge.net/squirrelmail/squirrelmail/functions/global.php?r1=1.27.2.16&r2=1.27.2.17&view=patch&pathrev=SM-1_4-STABLEhttp://www.squirrelmail.org/security/issue/2006-06-01http://secunia.com/advisories/20406http://www.securityfocus.com/bid/18231http://securitytracker.com/id?1016209http://www.redhat.com/support/errata/RHSA-2006-0547.htmlhttp://secunia.com/advisories/20931http://www.novell.com/linux/security/advisories/2006_17_sr.htmlhttp://secunia.com/advisories/21159ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.aschttp://secunia.com/advisories/21262http://docs.info.apple.com/article.html?artnum=306172http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.htmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:101http://www.securityfocus.com/bid/25159http://secunia.com/advisories/26235http://www.vupen.com/english/advisories/2007/2732http://www.vupen.com/english/advisories/2006/2101https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11670http://www.securityfocus.com/archive/1/435605/100/0/threadedhttps://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373731https://github.com/karthi-the-hacker/CVE-2006-2842https://www.exploit-db.com/exploits/27948/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook