PHP remote file inclusion vulnerability in mod_flatmenu.php in the Flatmenu 1.07 and earlier Mambo module allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Flatmenu |
Mambo |
* |
1.7 |
References