CVE-2006-3930

2006-07-3121:00:00

mitre

www.cve.org

AI Score

7.6

Confidence

High

EPSS

0.154

Percentile

95.9%

JSON

PHP remote file inclusion vulnerability in admin.a6mambohelpdesk.php in a6mambohelpdesk Mambo Component 18RC1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.

References

secunia.com/advisories/21227

securityreason.com/securityalert/1309

www.osvdb.org/27654

www.securityfocus.com/archive/1/441286/100/0/threaded

www.securityfocus.com/bid/19198

www.vupen.com/english/advisories/2006/3015

exchange.xforce.ibmcloud.com/vulnerabilities/28054

www.exploit-db.com/exploits/2078