2 matches found
Immunity Canvas: JOOMLAOFLQ_INCLUDE
Name| joomlaoflqinclude ---|--- CVE| CVE-2008-1682 Exploit Pack| CANVAS Description| Joomla FlashQuiz 1.0.2 Remote File Inclusion Notes| CVE Name: CVE-2008-1682 VENDOR: Joomla Repeatability: Infinite References: http://www.securityfocus.com/bid/28574 CVE Url: https://vulners.com/cve/CVE-2008-1682...
CVE-2008-1682
CVE-2008-1682 describes a PHP remote file inclusion vulnerability in the Joomla! Online FlashQuiz (com_onlineflashquiz) 1.0.2 component. The flaw is in quiz/common/db_config.inc.php, where an attacker can supply a URL in the base_dir parameter to execute arbitrary PHP code on the affected system....