3 matches found
CVE-2008-0567
Multiple PHP remote file inclusion vulnerabilities in ChronoEngine ChronoForms comchronocontact 2.3.5 component for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter to 1 PPS/File.php, 2 Writer.php, and 3 PPS.php in excelwriter/; and 4...
Immunity Canvas: JOOMLACHRONOFORMS_INCLUDE
Name| joomlachronoformsinclude ---|--- CVE| CVE-2008-0567 Exploit Pack| CANVAS Description| Joomla Chronoforms Component Remote File Inclusion Notes| CVE Name: CVE-2008-0567 VENDOR: Joomla Repeatability: Infinite References: http://securityreason.com/exploitalert/3292 CVE Url:...
CVE-2008-0567
CVE-2008-0567 affects ChronoEngine ChronoForms (com_chronocontact) 2.3.5 for Joomla!, enabling multiple PHP remote file inclusion via the mosConfig_absolute_path parameter. The vulnerability targets files in excelwriter/ (PPS/File.php, Writer.php, PPS.php) and excelwriter/Writer/ (BIFFwriter.php,...