RSS   Vulnerabilities for 'Swmenufree'   RSS

2007-10-12
 
CVE-2007-5389

CWE-94
 

 
** DISPUTED ** PHP remote file inclusion vulnerability in preview.php in the swMenuFree (com_swmenufree) 4.6 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: a reliable third party disputes this issue because preview.php tests a certain constant to prevent direct requests.

 


Copyright 2024, cxsecurity.com

 

Back to Top