CVE-2006-4556 in Joomla and Mambo Products
Published on September 6, 2006

PHP remote file inclusion vulnerability in index.php in the JIM component for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: another researcher has stated that the product distribution does not include an index.php file. Also, this might be related to CVE-2006-4242

NVD

Products Associated with CVE-2006-4556

stack.watch emails you whenever new vulnerabilities are published in Joomla Jim Component or Mambo Jim Component. Just hit a watch button to start following.

Joomla Jim Component

Mambo Jim Component

Exploit Probability

EPSS

0.06%

Percentile

18.33%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2006-4556 in Joomla and Mambo ProductsPublished on September 6, 2006

Products Associated with CVE-2006-4556

Exploit Probability

CVE-2006-4556 in Joomla and Mambo Products
Published on September 6, 2006