Published: 11/10/2007 Updated: 29/07/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities in the Avant-Garde Solutions MOSMedia Lite (com_mosmedia) 4.5.1 component for Mambo and Joomla! allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) credits.html.php, (2) info.html.php, (3) media.divs.php, (4) media.divs.js.php, (5) purchase.html.php, or (6) support.html.php in includes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: vector 3 may be the same as CVE-2007-2043.2.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mambo mambo
ag-solutions mosmedia lite 4.5.1
joomla joomla

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Scripts : MOSMediaLite451 Discovered By : k1n9k0ng Scripts site : wwwdjoomlacom/component/option,com_remository/Itemid,2/func,fileinfo/id,104/ Thanks To : #sekuritionline, #semprol, #bajingan, #mimid, #rip, #x-code, #yogyafree spe ...

CWE-94 http://www.securityfocus.com/bid/25960 http://osvdb.org/38586 http://osvdb.org/38588 http://osvdb.org/38587 https://exchange.xforce.ibmcloud.com/vulnerabilities/37015 https://nvd.nist.gov https://www.exploit-db.com/exploits/4499/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-5362

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect