Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) imgcaptcha.php or (2) mp3captcha.php in assets/captcha/includes/captchaform/, or (3) assets/captcha/includes/captchatalk/swfmovie.php.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/34986 | Exploit |
https://www.exploit-db.com/exploits/8697 |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2009-05-29 09:30
Updated : 2017-09-28 18:34
NVD link : CVE-2009-1822
Mitre link : CVE-2009-1822
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
joomla
- joomla\!
gonzalo_maser
- com_artforms