CVE-2009-2637

PHP remote file inclusion vulnerability in toolbar_ext.php in the BookLibrary (com_booklibrary) component 1.5.2.4 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:joomla:joomla:*:*:*:*:*:*:*:*
cpe:2.3:a:ordasoft:com_booklibrary:1.5.2.4:*:basic:*:*:*:*:*

Information

Published : 2009-07-28 12:30

Updated : 2017-09-18 18:29


NVD link : CVE-2009-2637

Mitre link : CVE-2009-2637


JSON object : View

CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')

Advertisement

dedicated server usa

Products Affected

ordasoft

  • com_booklibrary

joomla

  • joomla