Unrated severityNVD Advisory· Published Aug 1, 2006· Updated Jun 16, 2026
CVE-2006-3947
CVE-2006-3947
Description
PHP remote file inclusion vulnerability in components/com_mambatstaff/mambatstaff.php in the Mambatstaff 3.1b and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:mambo:mambatstaff:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mambo:mambatstaff:*:*:*:*:*:*:*:*range: <=3.1b
- (no CPE)range: <=3.1b
Patches
Vulnerability mechanics
References
8- www.securityfocus.com/bid/19222nvdExploit
- secunia.com/advisories/21292nvdVendor Advisory
- securityreason.com/securityalert/1313nvd
- www.osvdb.org/27653nvd
- www.securityfocus.com/archive/1/441538/100/0/threadednvd
- www.vupen.com/english/advisories/2006/3055nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28074nvd
- www.exploit-db.com/exploits/2086nvd
News mentions
0No linked articles in our index yet.