Mambo » Com Facileforms : Security Vulnerabilities, CVEs,
PHP remote file inclusion vulnerability in facileforms.frame.php in the FacileForms (com_facileforms) component 1.4.4 for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the ff_compath parameter.
Max CVSS
7.5
EPSS Score
2.00%
Published
2008-07-02
Updated
2017-09-29
SQL injection vulnerability in the Facile Forms (com_facileforms) component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
Max CVSS
7.5
EPSS Score
0.10%
Published
2008-02-21
Updated
2018-10-15
2 vulnerabilities found