4 matches found
CVE-2005-0512
The CVE-2005-0512 entry describes a remote file inclusion in Mambo Open Source 4.5.2, via Tar.php, where the mosConfig_absolute_path parameter can be altered to reference a URL on a remote server containing PHP code. This allows an attacker to execute arbitrary PHP code on the affected web server...
CVE-2005-0512
PHP remote file inclusion vulnerability in Tar.php in Mambo 4.5.2 allows remote attackers to execute arbitrary PHP code by modifying the mosConfigabsolutepath parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2004-1693...
Mambo Open Source Tar.php Remote File Inclusion
The version of Mambo Open Source on the remote host fails to properly sanitize input passed through the 'mosConfigabsolutepath' parameter of the 'Tar.php' script. Provided PHP's 'registerglobals' setting is enabled, a remote attacker may exploit this vulnerability to cause code to be executed in...
CVE-2005-0512
PHP remote file inclusion vulnerability in Tar.php in Mambo 4.5.2 allows remote attackers to execute arbitrary PHP code by modifying the mosConfigabsolutepath parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2004-1693...