VULHUB ™

It is reported that Mambo Open Source is affected by a remote PHP file include vulnerability. This issue is due in part to the application failing to properly sanitize user-supplied input to the 'Tar.php' script. Remote attackers could potentially exploit this issue to include a remote malicious PHP script, which will be executed in the context of the Web server hosting the vulnerable software. This issue reportedly affects Mambo Open Source version 4.5.2 and earlier.

It is reported that Mambo Open Source is affected by a remote PHP file include vulnerability. This issue is due in part to the application failing to properly sanitize user-supplied input to the 'Tar.php' script. Remote attackers could potentially exploit this issue to include a remote malicious PHP script, which will be executed in the context of the Web server hosting the vulnerable software. This issue reportedly affects Mambo Open Source version 4.5.2 and earlier.