Vulnerabilities (CVE)

Filtered by vendor Swmenupro Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-5389 2 Joomla, Swmenupro 2 Joomla, Swmenufree 2024-11-21 6.8 MEDIUM N/A
PHP remote file inclusion vulnerability in preview.php in the swMenuFree (com_swmenufree) 4.6 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: a reliable third party disputes this issue because preview.php tests a certain constant to prevent direct requests