Cbsms Mambo Module vulnerabilities
2 known vulnerabilities affecting cbsms/mambo_module.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-3294P3MEDIUMCVSS 5.1PoCv1.02006-06-29
CVE-2006-3294 [MEDIUM] CVE-2006-3294: PHP remote file inclusion vulnerability in mod_cbsms_messages.php in CBSMS Mambo Module 1.0 and earl
PHP remote file inclusion vulnerability in mod_cbsms_messages.php in CBSMS Mambo Module 1.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
nvd
CVE-2006-3302P4MEDIUMCVSS 5.1≤ 1.02006-06-29
CVE-2006-3302 [MEDIUM] CVE-2006-3302: PHP remote file inclusion vulnerability in mod_cbsms.php in CBSMS Mambo Module 1.0 and earlier, when
PHP remote file inclusion vulnerability in mod_cbsms.php in CBSMS Mambo Module 1.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosC_a_path parameter. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.
nvd