PHP Remote File Inclusion Vulnerability in BSQ Sitestats for Joomla!
CVE-2006-4995

Currently unrated

Key Information:

Vendor: Joomla
Status: Bsq Sitestats
Vendor: CVE Published:; 26 September 2006

Summary

The BSQ Sitestats plugin for Joomla! contains a PHP remote file inclusion vulnerability that allows remote attackers to execute arbitrary PHP code. This is possible through a malicious URL specified in the mosConfig_absolute_path parameter before version 2.1.1. Proper updates and configurations are recommended to mitigate potential risks associated with this vulnerability.

References

http://forum.joomla.org/index.php/topic%2C79477.0.html

x_refsource_CONFIRM

http://developer.joomla.org/sf/sfmain/do/viewProject/proj...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 26, 2006