CVE-2006-4556

Опубликовано: 06 сент. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

PHP remote file inclusion vulnerability in index.php in the JIM component for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: another researcher has stated that the product distribution does not include an index.php file. Also, this might be related to CVE-2006-4242

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:joomla:jim_component:*:*:*:*:*:*:*:*

cpe:2.3:a:mambo:jim_component:*:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00059

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-qpqv-23g8-wmfg

github

почти 4 года назад

** DISPUTED ** PHP remote file inclusion vulnerability in index.php in the JIM component for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: another researcher has stated that the product distribution does not include an index.php file. Also, this might be related to CVE-2006-4242.