PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mambo mambo 4.5.1.3 |
||
mambo mambo 4.5.1_1.0.9 |
||
mambo mambo 4.5.3h |
||
mambo mambo 4.5.4 |
||
mambo mambo 4.6.1 |
||
mambo mambo 4.6.2 |
||
mambo mambo 4.0.14 |
||
mambo mambo 4.5.1a |
||
mambo mambo 4.5.2 |
||
mambo mambo 4.5.2.1 |
||
mambo mambo 4.5_1.0.2 |
||
mambo mambo 4.5_1.0.3_beta |
||
mambo mambo 4.5.1_beta |
||
mambo mambo 4.5.1_beta2 |
||
mambo mambo 4.5_1.0.0 |
||
mambo mambo 4.5_1.0.1 |
||
mambo mambo 4.6.4 |
||
mambo mambo 4.5 |
||
mambo mambo 4.5.0.2 |
||
mambo mambo 4.5.2.2 |
||
mambo mambo 4.5.2.3 |
||
mambo mambo 4.5_1.0.9 |
||
mambo mambo 4.6 |