RSS   Vulnerabilities for 'Constructor component'   RSS

2006-08-26
 
CVE-2006-4372

 

 
PHP remote file inclusion vulnerability in admin.lurm_constructor.php in the Lurm Constructor component (com_lurm_constructor) 0.6b and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the lm_absolute_path parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top