Joomla! 1.5 before RC2 (aka Endeleo) allows remote malicious users to obtain sensitive information (the full path) via unspecified vectors, probably involving direct requests to certain PHP scripts in tmpl/ directories.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joomla joomla 1.5.0_rc1 |
||
joomla joomla 1.5.0_beta |
||
joomla joomla 1.5.0_beta2 |