Vulnerabilities (CVE)

Filtered by vendor Mambo Subscribe
Filtered by product Swmenu Component
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-1699 2 Joomla, Mambo 2 Swmenu Component, Swmenu Component 2024-02-28 10.0 HIGH N/A
Multiple PHP remote file inclusion vulnerabilities in the SWmenu (com_swmenupro and com_swmenufree) 4.0 component for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to ImageManager/Classes/ImageManager.php under the (1) components/ or (2) administrator/components/ directory trees.