PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and previous versions (Build 3.04.04) allows remote malicious users to execute arbitrary PHP code via a URL in the _PM_[path][handler] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phlymail phlymail lite |