CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-22 09:56:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
860e02050fe0cfa14d092faefbaafd5bd449bbcb
CVEs-PoC/2005/CVE-2005-3738.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

759 B
Raw Blame History

CVE-2005-3738

Description

globals.php in Mambo Site Server 4.0.14 and earlier, when register_globals is disabled, allows remote attackers to overwrite variables in the GLOBALS array and conduct various attacks, as demonstrated using the mosConfig_absolute_path parameter to content.html.php for remote PHP file inclusion.

POC

Reference

No PoCs from references.

Github

Reference in New Issue View Git Blame Copy Permalink