Mambo : Security Vulnerabilities, CVEs, Published In 2008 (File inclusion) CVSS score >= 3
PHP remote file inclusion vulnerability in facileforms.frame.php in the FacileForms (com_facileforms) component 1.4.4 for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the ff_compath parameter.
Max CVSS
7.5
EPSS Score
2.00%
Published
2008-07-02
Updated
2017-09-29
CVE-2008-2905
Public exploit
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Max CVSS
6.8
EPSS Score
30.16%
Published
2008-06-30
Updated
2017-09-29
2 vulnerabilities found