PHP remote file inclusion vulnerability in mambelfish.class.php in the mambelfish component (com_mambelfish) 1.1 and previous versions for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mambo mambelfish component |