CVE-2006-7104

MOStlyCE - Remote Code Execution via mosConfig_absolute_path Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-7104. PoCs published by The_BeKiR.

AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in Mambo MostlyCE due to insufficient sanitization of user-supplied data in the 'mosConfig_absolute_path' parameter. An attacker can include a remote shell by manipulating the parameter in the URL.

Description

PHP remote file inclusion vulnerability in htmltemplate.php in the Chad Auld MOStlyContent Editor (MOStlyCE) as created on May 2006, a component for Mambo 4.5.4, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by The_BeKiR · textwebappsphp
https://www.exploit-db.com/exploits/28818

This exploit demonstrates a remote file inclusion vulnerability in Mambo MostlyCE due to insufficient sanitization of user-supplied data in the 'mosConfig_absolute_path' parameter. An attacker can include a remote shell by manipulating the parameter in the URL.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Mambo MostlyCE
No auth needed
Prerequisites: Network access to the target application · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29598
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/20549
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2363
Exploit mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/448786

Scores

EPSS 0.0228
EPSS Percentile 80.9%

Details

CWE
CWE-94
Status published
Products (1)
mambo/mostlyce 4.5.4
Published Mar 03, 2007
Tracked Since Feb 18, 2026