📦

mambelfish_component

Vendor: mambo

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 1 Code Available
Total RCEs 1 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 12.76% Exploit Prob.
Latest CVE CVE-2006-4270 Aug 21

Security Vulnerability Index

Page 1 / 1
6.8 CVSS
CVE-2006-4270
RCE Exploit Found

PHP remote file inclusion vulnerability in mambelfish.class.php in the mambelfish component (com_mambelfish) 1.1 and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

EPSS: 12.76%