Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
nu_mail.inc.php in Andreas Kansok phPay 2.02 and 2.02.1, when register_globals is enabled, allows remote attackers to use the server as an open mail relay via modified mail_text2, user_row[5], nu_mail_1, and shop_mail parameters. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
phPay 'Nu_mail.inc.PHP'开放邮件中继漏洞
Vulnerability Description
Andreas Kansok phPay 2.02和2.02.1版本中的nu_mail.inc.php脚本,当register_globals启用时, 远程攻击者可借助畸形的mail_text2,user_row[5],nu_mail_1和shop_mail参数将服务器作为开放邮件中继。
CVSS Information
N/A
Vulnerability Type
N/A