CVE-2009-2635

PHP remote file inclusion vulnerability in toolbar_ext.php in the RealEstateManager (com_realestatemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:joomla:joomla:*:*:*:*:*:*:*:*
cpe:2.3:a:ordasoft:com_realestatemanager:1.0:*:basic:*:*:*:*:*

Information

Published : 2009-07-28 12:30

Updated : 2017-09-18 18:29


NVD link : CVE-2009-2635

Mitre link : CVE-2009-2635


JSON object : View

CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')

Advertisement

dedicated server usa

Products Affected

ordasoft

  • com_realestatemanager

joomla

  • joomla