Luigi Massa » Onguma Time Sheet : Security Vulnerabilities, CVEs,
PHP remote file inclusion vulnerability in lib/onguma.class.php in the Onguma Time Sheet (com_ongumatimesheet20) 2.0 4b component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Max CVSS
7.5
EPSS Score
1.04%
Published
2009-03-02
Updated
2017-09-29
1 vulnerabilities found