Description
A remote file inclusion vulnerability was reported in Joomla! core. It is possible for a remote attacker to extract a remotely hosted archive while you are extracting a backup archive or installing an update, depending on your server settings.
Affected versions:
Versions: 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4.
Remediation
Upgrade to the latest version of Joomla!.
References
Related Vulnerabilities
WordPress Plugin Customer Reviews for WooCommerce Local File Inclusion (5.15.0)
WordPress Plugin Premmerce Permalink Manager for WooCommerce Local File Inclusion (2.3.10)
WordPress Plugin WP Vault Local File Inclusion (0.8.6.6)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Local File Inclusion (4.18.63)
WordPress Plugin Woocommerce-Recent Purchases Local File Inclusion (1.0.1)