CVE-2006-4372

2006-08-26T17:04:00
ID CVE-2006-4372
Type cve
Reporter NVD
Modified 2017-10-18T21:29:20

Description

PHP remote file inclusion vulnerability in admin.lurm_constructor.php in the Lurm Constructor component (com_lurm_constructor) 0.6b and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the lm_absolute_path parameter.