Lucene search
K

4 matches found

NVD
NVD
added 2006/08/23 1:4 a.m.10 views

CVE-2006-4296

PHP remote file inclusion vulnerability in classes/Tar.php in bigAPE-Backup component combabackup for Mambo 1.1 allows remote attackers to include arbitrary files via the mosConfigabsolutepath parameter...

7.5CVSS6.9AI score0.0338EPSS
Exploits0References6
CVE
CVE
added 2006/08/23 1:0 a.m.39 views

CVE-2006-4296

CVE-2006-4296 is a PHP remote file inclusion vulnerability in Mambo 1.1, specifically within the bigAPE-Backup component (com_babackup) and its Tar.php. The root cause is that the mosConfig_absolute_path parameter can be used by an attacker to include arbitrary files, enabling remote code inclusi...

7.5CVSS7.2AI score0.0338EPSS
Exploits0References6Affected Software1
securityvulns
securityvulns
added 2006/08/21 12:0 a.m.38 views

[SA21574] Mambo bigAPE-Backup Component File Inclusion Vulnerability

TITLE: Mambo bigAPE-Backup Component File Inclusion Vulnerability SECUNIA ADVISORY ID: SA21574 VERIFY ADVISORY: http://secunia.com/advisories/21574/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: bigAPE-Backup 1.x component for Mambo http://secunia.com/product/11615/...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/08/19 12:0 a.m.49 views

Mambo Component bigAPE-Backup 1.1 - Remote File Inclusion

/ Notes: globals bypass with a multipart/form-data POST PHP4 = 4.4.0 PHP5 = 5.0.5 http://www.hardened-php.net/globals-problem /str0ke / C Y BE R - W A R R i O R T I M mambo combabackup 1.1 Component mosConfigabsolutepath Remote File Inclusion Vulnerabilities Author: mdx Class : Remote cont@ct:...

7.4AI score
Exploits0
Rows per page
Query Builder