February 10, 2012, 17:45:53 *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Add your links to our directory. Click here to add your links.
 
  Home   Forum   Help Search Directory Calendar Login Register    RSS 2.0 feedAtom feed


News
Add your links to our directory. Click here to add your links.
IT Resources
Pages: [1]
« previous next »
  Print  
Author Topic:

Mambo Display MOSBot Manager Component mosConfig_absolute_path

 (Read 1790 times)
0 Members and 1 Guest are viewing this topic.
TheGodFather
Administrator
Hero Member
*****

Points: 202
Offline Offline

Posts: 2570



WWW
« on: August 30, 2006, 04:09:31 »
Mambo Display MOSBot Manager Component mosConfig_absolute_path Remote File Include Vulnerability

Quote
The Mambo Display MOSBot Manager component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the webserver process. This may facilitate a compromise of the application and the underlying system; other attacks are also possible.

http://www.securityfocus.com/bid/19621/discuss

It's a nasty bug. Upgrade your mambo Smiley

Regards
Logged
Deleted Domains
Hostmaster Web Tools
Webmaster Web Tools


Pages: [1]
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
TinyPortal v0.9.7 © Bloc 		Valid XHTML 1.0! Valid CSS!