Published: 22/08/2006 Updated: 19/10/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in admin.a6mambocredits.php in the a6mambocredits component (com_a6mambocredits) 2.0.0 and previous versions for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mambo a6mambocredits component 2.0.0

Title : Mambo a6mambocredits component v100 <== (mosConfig_live_site) Remote File Include Vulnerabilities Affected Application: Mambo a6mambocredits component v100 (Mambo CMS Component) :[ contact ]: Discoverd/Found by: Charles Nelwan aka Cmaster4 Team: #BatamHacker ircdaln ...

CWE-94 http://www.securityfocus.com/bid/19581 http://securitytracker.com/id?1016716 http://secunia.com/advisories/21540 http://www.osvdb.org/27991 http://www.vupen.com/english/advisories/2006/3311 https://exchange.xforce.ibmcloud.com/vulnerabilities/28443 https://www.exploit-db.com/exploits/2207 https://nvd.nist.gov https://www.exploit-db.com/exploits/2207/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4288

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect