3 matches found
CVE-2006-4363
PHP remote file inclusion vulnerability in admin.cropcanvas.php in the CropImage component comcropimage 1.0 for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the cropimagedir parameter...
CVE-2006-4363
PHP remote file inclusion vulnerability in admin.cropcanvas.php in the CropImage component comcropimage 1.0 for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the cropimagedir parameter...
CVE-2006-4363
In CVE-2006-4363, the CropImage component (com_cropimage) for Mambo 1.0 is affected. The vulnerability is a PHP remote file inclusion in admin.cropcanvas.php, exploitable via a URL in the cropimagedir parameter, allowing arbitrary PHP code execution on the server. Root cause: unvalidated input fr...