PHP remote file inclusion vulnerability in performs.php in the perForms component (com_performs) 1.0 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
References
Configurations
Information
Published : 2006-07-24 05:19
Updated : 2018-10-17 14:30
NVD link : CVE-2006-3774
Mitre link : CVE-2006-3774
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
joomla
- performs_component