PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote malicious users to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mambo mambo 4.5_1.0.9 |