1 results (0.002 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2006-4375
https://notcve.org/view.php?id=CVE-2006-4375
26 Aug 2006 — PHP remote file inclusion vulnerability in contxtd.class.php in the Contacts XTD (ContXTD) component for Mambo (com_contxtd) allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: another researcher has disputed this issue, saying that the software prevents the attack by checking whether _VALID_MOS is defined ** IMPUGNADA ** Vulnerabilidad de inclusión remota de archivo en PHP en contxtd.class.php en el componente Contacts XTD (ContXTD) para Mambo (co... • http://securityreason.com/securityalert/1451 •