The com_rss option (rss.php) in (1) Mambo and (2) Joomla! allows remote malicious users to obtain sensitive information via an invalid feed parameter, which reveals the path in an error message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mambo mambo 4.5.3h |
||
joomla joomla 1.0.7 |