← CVECheck
HomeVulnerabilities

CVE-2004-1693 — HIGH severity vulnerability (PHP remote file inclusion vulnerability in Function.php in M)

PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote attackers to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.

CVE IDCVE-2004-1693
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-09-18
Last modified2026-04-16
DescriptionPHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote attackers to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →