Description
The com_rss option (rss.php) in (1) Mambo and (2) Joomla! allows remote attackers to obtain sensitive information via an invalid feed parameter, which reveals the path in an error message.
Remediation
References
Related Vulnerabilities
WordPress Plugin BBS e-Franchise SQL Injection (1.1.1)
WordPress Plugin Events Calendar for Google Local File Inclusion (2.1.0)
Oracle JRE CVE-2012-1726 Vulnerability (CVE-2012-1726)
PHP Out-of-bounds Read Vulnerability (CVE-2019-9022)
WordPress Plugin Login with phone number Security Bypass (1.7.26)