Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Joomla component SimpleDownload Local File Inclusion
May 17 2010 07:54AM
jerzy patraszewski gmail com
A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution.
Input passed to controller is not properly sanitized, allowing attacker to inject php code
via Local File In...
[ more ]
Copyright 2010, SecurityFocus