1 results (0.004 seconds)

CVSS: 6.8EPSS: 8%CPEs: 1EXPL: 1

PHP remote file inclusion vulnerability in smf.php in the SMF-Forum 1.3.1.3 Bridge Component (com_smf) For Joomla! and Mambo 4.5.3+ allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. Vulnerabilidad PHP de inclusión remota de archivo en smf.php en SMF-Forum 1.3.1.3 Bridge Component (com_smf) para Joomla! y Mambo 4.5.3+ permite a atacantes remotos ejecutar código PHP a través de una URL en el parámetro mosConfig_absolute_path. • https://www.exploit-db.com/exploits/2021 http://forum.mamboserver.com/showthread.php?t=83001 http://secunia.com/advisories/21079 http://www.securityfocus.com/bid/18924 http://www.vupen.com/english/advisories/2006/2846 https://exchange.xforce.ibmcloud.com/vulnerabilities/27777 • CWE-94: Improper Control of Generation of Code ('Code Injection') •