COM Comprofiler Component

DATE	CVE	VULNERABILITY TITLE	RISK
2006-09-06	CVE-2006-4553	Code Injection vulnerability in multiple products PHP remote file inclusion vulnerability in plugin.class.php in the com_comprofiler Components 1.0 RC2 for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. network joomla mambo CWE-94	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.