8 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.158 Low
EPSS
Percentile
95.9%
Multiple PHP remote file inclusion vulnerabilities in Security Images (com_securityimages) component 3.0.5 and earlier for Joomla! allow remote attackers to execute arbitrary code via a URL in the mosConfig_absolute_path parameter in (1) configinsert.php, (2) lang.php, (3) client.php, and (4) server.php.
forum.joomla.org/index.php/topic%2C79477.0.html
forum.joomla.org/index.php/topic%2C81589.0.html
secunia.com/advisories/21260
www.osvdb.org/27655
www.osvdb.org/27656
www.osvdb.org/27657
www.osvdb.org/27658
www.securityfocus.com/bid/19217
www.vupen.com/english/advisories/2006/3062
exchange.xforce.ibmcloud.com/vulnerabilities/28078
www.exploit-db.com/exploits/2083