Description

PHP remote file inclusion vulnerability in includes/joomla.php in Joomla! 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter.

Remediation

References

CVE-2006-2960

Related Vulnerabilities

WordPress Plugin SG Optimizer Multiple Vulnerabilities (3.3.5)

LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-16177)

WordPress Plugin iFlyChat-WordPress Chat Cross-Site Scripting (4.6.4)

jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-5312)

Moodle Improper Input Validation Vulnerability (CVE-2012-6101)

Severity

High

Classification

CVE-2006-2960

Tags

Missing Update Known Vulnerabilities