An issue exists in Joomla! 2.5.0 up to and including 3.9.22. The folder parameter of mod_random_image lacked input validation, leading to a path traversal vulnerability.
joomla joomla!