Unrated severityNVD Advisory· Published Aug 5, 2006· Updated Jun 16, 2026
CVE-2006-3980
CVE-2006-3980
Description
PHP remote file inclusion vulnerability in administrator/components/com_mgm/help.mgm.php in Mambo Gallery Manager (MGM) 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:mambo:mambo_gallery_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mambo:mambo_gallery_manager:*:*:*:*:*:*:*:*range: <=0.95r2
- (no CPE)range: <=0.95r2
- Range: 4.5
Patches
Vulnerability mechanics
References
8- www.securityfocus.com/bid/19224nvdExploit
- secunia.com/advisories/21268nvdVendor Advisory
- securityreason.com/securityalert/1322nvd
- www.osvdb.org/27650nvd
- www.securityfocus.com/archive/1/441533/100/0/threadednvd
- www.vupen.com/english/advisories/2006/3054nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28072nvd
- www.exploit-db.com/exploits/2084nvd
News mentions
0No linked articles in our index yet.