PHP remote file inclusion vulnerability in index.php in Joomla! 1.0.11 through 1.0.14, when RG_EMULATION is enabled in configuration.php, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2008-12-18 17:52
Updated : 2018-10-11 13:56
NVD link : CVE-2008-5671
Mitre link : CVE-2008-5671
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
joomla
- joomla