Security Advisory

CVE-2006-4130

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-08-14 23:00:00

Last updated 2024-08-07 18:57:46

Assigner mitre

State PUBLISHED

Description

PHP remote file inclusion vulnerability in admin.remository.php in the Remository Component (com_remository) 3.25 and earlier for Mambo and Joomla!, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

← Browse all CVEs View on cve.org ↗