Lucene search
K

4 matches found

CVE
CVE
added 2005/02/23 5:0 a.m.46 views

CVE-2005-0512

The CVE-2005-0512 entry describes a remote file inclusion in Mambo Open Source 4.5.2, via Tar.php, where the mosConfig_absolute_path parameter can be altered to reference a URL on a remote server containing PHP code. This allows an attacker to execute arbitrary PHP code on the affected web server...

7.5CVSS7.6AI score0.01284EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2005/02/23 5:0 a.m.19 views

CVE-2005-0512

PHP remote file inclusion vulnerability in Tar.php in Mambo 4.5.2 allows remote attackers to execute arbitrary PHP code by modifying the mosConfigabsolutepath parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2004-1693...

7.5AI score0.01284EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/02/22 12:0 a.m.34 views

Mambo Open Source Tar.php Remote File Inclusion

The version of Mambo Open Source on the remote host fails to properly sanitize input passed through the 'mosConfigabsolutepath' parameter of the 'Tar.php' script. Provided PHP's 'registerglobals' setting is enabled, a remote attacker may exploit this vulnerability to cause code to be executed in...

7.5CVSS5.8AI score0.01284EPSS
Exploits0References2
NVD
NVD
added 2005/02/21 5:0 a.m.22 views

CVE-2005-0512

PHP remote file inclusion vulnerability in Tar.php in Mambo 4.5.2 allows remote attackers to execute arbitrary PHP code by modifying the mosConfigabsolutepath parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2004-1693...

7.5CVSS7.5AI score0.01284EPSS
Exploits0References2
Rows per page
Query Builder