CVE-2007-2089 Information

Description

Multiple PHP remote file inclusion vulnerabilities in the Jx Development Article 1.1 and earlier component for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to com_articles.php in (1) components/ or (2) classes/html/.

Reference

http://www.securityfocus.com/archive/1/466059/100/0/threaded http://www.securityfocus.com/bid/23513 http://www.vupen.com/english/advisories/2007/1394 https://exchange.xforce.ibmcloud.com/vulnerabilities/33663 https://www.exploit-db.com/exploits/3736