Unrated severityNVD Advisory· Published Aug 1, 2006· Updated Apr 16, 2026
CVE-2006-3947
CVE-2006-3947
Description
PHP remote file inclusion vulnerability in components/com_mambatstaff/mambatstaff.php in the Mambatstaff 3.1b and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.securityfocus.com/bid/19222nvdExploit
- secunia.com/advisories/21292nvdVendor Advisory
- securityreason.com/securityalert/1313nvd
- www.osvdb.org/27653nvd
- www.securityfocus.com/archive/1/441538/100/0/threadednvd
- www.vupen.com/english/advisories/2006/3055nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28074nvd
- www.exploit-db.com/exploits/2086nvd
News mentions
0No linked articles in our index yet.