CVE-2008-6482 Information

Description

PHP remote file inclusion vulnerability in admin.treeg.php in the Flash Tree Gallery (com_treeg) component 1.0 for Joomla! when register_globals is enabled allows remote attackers to execute arbitrary PHP code via the mosConfig_live_site parameter.

Reference

http://osvdb.org/49499 http://secunia.com/advisories/32520 http://www.securityfocus.com/bid/32041 https://exchange.xforce.ibmcloud.com/vulnerabilities/46260 https://www.exploit-db.com/exploits/6928