Описание
PHP remote file inclusion vulnerability in Savant2/Savant2_Plugin_options.php in the MambWeather 1.8.1 and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Ссылки
- Vendor Advisory
- Exploit
- Vendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1Версия до 1.8.1 (включая)
cpe:2.3:a:mambweather:mambweather:*:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.05675
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
debian
около 19 лет назад
PHP remote file inclusion vulnerability in Savant2/Savant2_Plugin_opti ...
github
больше 3 лет назад
PHP remote file inclusion vulnerability in Savant2/Savant2_Plugin_options.php in the MambWeather 1.8.1 and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
EPSS
Процентиль: 89%
0.05675
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94