Joomla 1.0.13 - 1.0.14 / (remote) PHP file inclusion possible if old configuration.php

Affects: Joomla 1.0.13 - 1.0.14 Vulnerability: remote PHP file inclusion possible if old configuration.php Date: 14-feb-2008 Introduction: Remote PHP file inclusion is possible when RGEMULATION is not defined in configuration.php. This is typical when upgrading from an older version, leaving...

joomlaoldconfig-rfi.txt

Affects: Joomla 1.0.13 - 1.0.14 Vulnerability: remote PHP file inclusion possible if old configuration.php Date: 14-feb-2008 Introduction: Remote PHP file inclusion is possible when RGEMULATION is not defined in configuration.php. This is typical when upgrading from an older version, leaving...

CVE-2006-5106

Cross-site scripting XSS vulnerability in FacileForms before 1.4.7 for Mambo and Joomla!, when either registerglobals or RGEMULATION is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2006-5106

Cross-site scripting XSS vulnerability in FacileForms before 1.4.7 for Mambo and Joomla!, when either registerglobals or RGEMULATION is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...