|
| 1 | +[basic] |
| 2 | +description = "SquirrelMail 1.4.6 及之前版本中存在 PHP 远程文件包含漏洞。当 PHP 配置参数 register_globals 启用且 magic_quotes_gpc 禁用时,远程攻击者可通过 functions/plugin.php 文件中的 plugins 数组参数传入恶意 URL,导致任意 PHP 代码执行。攻击者利用此漏洞可完全控制目标服务器,窃取敏感数据或进行后续攻击。此漏洞虽存在争议,但在符合特定配置条件的环境中仍构成严重威胁,CVSS 评分为 7.5。建议升级至最新版本或禁用 register_globals 以降低风险。" |
| 3 | +published = "2006-06-06T20:06:00.000" |
| 4 | +remediation = "建议升级到 SquirrelMail 1.4.14 及以上版本,并关闭 register_globals 配置项。如果无法立即升级,可在 httpd 配置文件中添加 `php_flag register_globals Off` 来临时缓解风险。" |
| 5 | +score = 7.5 |
| 6 | +severity = "HIGH" |
| 7 | +sources = ["nuclei"] |
| 8 | +title = "SquirrelMail 1.4.x functions/plugin.php PHP 远程文件包含漏洞" |
| 9 | +updated = "2026-06-16T22:25:53.360" |
| 10 | + |
| 11 | +[exploit] |
| 12 | +exp_urls = [] |
| 13 | +poc_urls = [] |
| 14 | + |
| 15 | +[id] |
| 16 | +aliases = ["CVE-2006-2842"] |
| 17 | +ave_id = "AVE-2006-0003" |
| 18 | + |
| 19 | +[meta] |
| 20 | +collected_at = "2026-07-15T00:00:00Z" |
| 21 | +status = "completed" |
| 22 | + |
| 23 | +[references] |
| 24 | +urls = [ |
| 25 | + "http://docs.info.apple.com/article.html?artnum=306172", |
| 26 | + "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html", |
| 27 | + "http://secunia.com/advisories/20406", |
| 28 | + "http://secunia.com/advisories/20931", |
| 29 | + "http://secunia.com/advisories/21159", |
| 30 | + "http://secunia.com/advisories/21262", |
| 31 | + "http://secunia.com/advisories/26235", |
| 32 | + "http://securitytracker.com/id?1016209", |
| 33 | + "http://squirrelmail.cvs.sourceforge.net/squirrelmail/squirrelmail/functions/global.php?r1=1.27.2.16&r2=1.27.2.17&view=patch&pathrev=SM-1_4-STABLE", |
| 34 | + "http://www.mandriva.com/security/advisories?name=MDKSA-2006:101", |
| 35 | + "http://www.novell.com/linux/security/advisories/2006_17_sr.html", |
| 36 | + "http://www.redhat.com/support/errata/RHSA-2006-0547.html", |
| 37 | + "http://www.securityfocus.com/archive/1/435605/100/0/threaded", |
| 38 | + "http://www.securityfocus.com/bid/18231", |
| 39 | + "http://www.securityfocus.com/bid/25159", |
| 40 | + "http://www.squirrelmail.org/security/issue/2006-06-01", |
| 41 | + "http://www.vupen.com/english/advisories/2006/2101", |
| 42 | + "http://www.vupen.com/english/advisories/2007/2732", |
| 43 | + "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11670", |
| 44 | + "https://www.exploit-db.com/exploits/27948", |
| 45 | + "https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2006/CVE-2006-2842.yaml", |
| 46 | + "https://github.com/trickest/cve/blob/a90de4f84b4783951362f491671e1e9decfc17cb/2006/CVE-2006-2842.md", |
| 47 | + "https://github.com/nomi-sec/PoC-in-GitHub/blob/a8dd65f3bd9f09f4c40ddbec294c8d30c1b24bd7/2006/CVE-2006-2842.json", |
| 48 | + "https://github.com/projectdiscovery/nuclei-templates/blob/69a5a3cf926251a00061ec14d208b227367df73d/http/cves/2006/CVE-2006-2842.yaml", |
| 49 | + "https://github.com/ExpLangcn/NucleiTP/blob/2b7ecb9031a6eda4f272793045f29b339d8e0cce/CVES/high/cve-2006-2842-1329.yaml", |
| 50 | + "https://github.com/cckuailong/reapoc/blob/699762e4c31d0183733f64313d8fc3be6470bd37/2006/README.md", |
| 51 | + "https://github.com/u21h2/nacs/blob/1eaa239ded7496317a47073605c8ddda70686ef5/web/poc/pocs/nuclei/cves/2006/CVE-2006-2842.yaml", |
| 52 | + "https://github.com/CVEProject/cvelistV5/blob/8aea42c71147e21c6d32b71ffce877107de995c6/cves/2006/2xxx/CVE-2006-2842.json", |
| 53 | + "https://github.com/blackhook/nessus-plugins/blob/64177d96abbb07c58cf7e131046b067ebc61fcb5/C/centos_RHSA-2006-0547.nasl", |
| 54 | + "https://github.com/sari3l/Poc-Monitor/blob/390a2caf8d0391697242ea94d08104d12902a352/2006/README.md", |
| 55 | + "https://github.com/coreruleset/seaweed-reports/blob/3e2a1bd3dbca1b431f18ed0dabb71fa729d4d059/2022/Nov/27/Artifact/Report.csv", |
| 56 | + "https://github.com/karthi-the-hacker/CVE-2006-2842", |
| 57 | +] |
0 commit comments