Remote file inclusion

2007-10-1218:17:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

0.054 Low

EPSS

Percentile

93.1%

JSON

PHP remote file inclusion vulnerability in admin.wmtrssreader.php in the webmaster-tips.net Flash RSS Reader (com_wmtrssreader) 1.0 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.

CPENameOperatorVersion
flash_rss_readereq1.0

CPE	Name	Operator	Version
	flash_rss_reader	eq	1.0

References

osvdb.org/43765

securityreason.com/securityalert/3211

www.securityfocus.com/archive/1/481979/100/0/threaded

www.securityfocus.com/bid/25999

www.sibersavascilar.com/merhaba-dunya-1.html

exchange.xforce.ibmcloud.com/vulnerabilities/37056