CVE-2009-1822 – Joomla! Component ArtForms 2.1 b7 - Remote File Inclusion

https://notcve.org/view.php?id=CVE-2009-1822

Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) imgcaptcha.php or (2) mp3captcha.php in assets/captcha/includes/captchaform/, or (3) assets/captcha/includes/captchatalk/swfmovie.php. Múltiples vulnerabilidades de inclusión remota de fichero PHP en el componente InterJoomla ArtForms (com_artforms) v2.1b7 para Joomla! permite a atacantes remotos ejecutar código PHP de su elección a través de el parámetro mosConfig_absolute_path en imgcaptcha.php o (2) mp3captcha.php en assets/captcha/includes/captchaform/, o (3) assets/captcha/includes/captchatalk/swfmovie.php. • https://www.exploit-db.com/exploits/8697 http://www.securityfocus.com/bid/34986 • CWE-94: Improper Control of Generation of Code ('Code Injection') •