camino

5 exploits Active since Aug 2006
CVE-2006-4282 EXPLOITDB text WRITEUP
MamboWiki 0.9.6 - Remote File Inclusion via IP Parameter
PHP remote file inclusion vulnerability in MamboLogin.php in the MamboWiki component (com_mambowiki) 0.9.6 and earlier for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the IP parameter.
CVE-2006-4130 EXPLOITDB text WRITEUP
Remository for Mambo < 3.25 - Remote Code Execution via mosConfig_absolute_path Parameter
PHP remote file inclusion vulnerability in admin.remository.php in the Remository Component (com_remository) 3.25 and earlier for Mambo and Joomla!, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
CVE-2006-4348 EXPLOITDB text WORKING POC
Kochsuite Component 0.9.4 - Remote File Inclusion via mosConfig_absolute_path Parameter
PHP remote file inclusion vulnerability in config.kochsuite.php in the Kochsuite (com_kochsuite) 0.9.4 component for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
EIP-2026-108774 EXPLOITDB text WORKING POC
Joomla! Component Link Directory 1.0.3 - Remote File Inclusion
CVE-2006-3949 EXPLOITDB text WORKING POC
Mambo Artlinks Component - Remote Code Execution via mosConfig_absolute_path Parameter
PHP remote file inclusion vulnerability in artlinks.dispnew.php in the Artlinks component (com_artlinks) for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.