CVE-2000-0726 Information

Description

CGIMail.exe CGI program in Stalkerlab Mailers 1.1.2 allows remote attackers to read arbitrary files by specifying the file in the $Attach$ hidden form variable.

Reference

http://www.securityfocus.com/bid/1623 http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000829194618.H7744@thathost.com https://exchange.xforce.ibmcloud.com/vulnerabilities/5165