Vulnerability Description
Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) imgcaptcha.php or (2) mp3captcha.php in assets/captcha/includes/captchaform/, or (3) assets/captcha/includes/captchatalk/swfmovie.php.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Joomla | Joomla\! | All versions |
| Gonzalo Maser | Com Artforms | 2.1b7 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/34986Exploit
- https://www.exploit-db.com/exploits/8697
- http://www.securityfocus.com/bid/34986Exploit
- https://www.exploit-db.com/exploits/8697
FAQ
What is CVE-2009-1822?
CVE-2009-1822 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple PHP remote file inclusion vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfi...
How severe is CVE-2009-1822?
CVE-2009-1822 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-1822?
Check the references section above for vendor advisories and patch information. Affected products include: Joomla Joomla\!, Gonzalo Maser Com Artforms.