2 matches found
CVE-2006-5519
PHP remote file inclusion vulnerability in Savant2/Savant2Pluginoptions.php in the MambWeather 1.8.1 and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2006-5519
The CVE-2006-5519 vulnerability affects the Mambo/MambWeather package: remote code execution via a PHP remote file inclusion in Savant2/Savant2_Plugin_options.php. Specifically, the mosConfig_absolute_path parameter can be exploited to include arbitrary PHP code from a attacker-controlled URL in ...