CVE-2008-6841 – Joomla! Component DBQuery 1.4.1.1 - Remote File Inclusion

https://notcve.org/view.php?id=CVE-2008-6841

01 Jul 2009 — PHP remote file inclusion vulnerability in the Green Mountain Information Technology and Consulting Database Query (com_dbquery) component 1.4.1.1 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to classes/DBQ/admin/common.class.php. Vulnerabilidad de inclusión remota de archivo PHP en los componentes Green Mountain Information Technology y Consulting Database Query v1.4.1.1 y anteriores para Joomla! , permiten a atacantes remo... • https://www.exploit-db.com/exploits/6003 • CWE-94: Improper Control of Generation of Code ('Code Injection') •