CVE-2008-2990 Information

Description

PHP remote file inclusion vulnerability in facileforms.frame.php in the FacileForms (com_facileforms) component 1.4.4 for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the ff_compath parameter.

Reference

http://securityreason.com/securityalert/3967 http://www.securityfocus.com/bid/29904 https://exchange.xforce.ibmcloud.com/vulnerabilities/43290 https://www.exploit-db.com/exploits/5915