Mambo.MosConfig.Absolute.Path.Remote.File.Inclusion

description-logoDescription

It indicates a possible exploit of a file inclusion vulnerability in Mambo Email Publisher, that may allow a remote attacker to execute arbitrary PHP code by sending a specially crafted URL.

affected-products-logoAffected Products

MamboXChange Mambo eMail Publisher 1.2

Impact logoImpact

Compromise of the affected system.

recomended-action-logoRecommended Actions

Currently, we are not aware of any vendor-supplied patches for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-09-25 13.457