CVE-2007-4185

Joomla! 1.0.12 allows remote attackers to obtain sensitive information via a direct request for (1) Stat.php (2) OutputFilter.php, (3) OutputCache.php, (4) Modifier.php, (5) Reader.php, and (6) TemplateCache.php in includes/patTemplate/patTemplate/; (7) includes/Cache/Lite/Output.php; and other unspecified components, which reveal the path in various error messages.

🔗 References (22)

• cve@mitrehttp://osvdb.org/39037
• cve@mitrehttp://osvdb.org/39038
• cve@mitrehttp://osvdb.org/39039
• cve@mitrehttp://osvdb.org/39040
• cve@mitrehttp://osvdb.org/39041
• cve@mitrehttp://osvdb.org/39042
• cve@mitrehttp://osvdb.org/39043
• cve@mitrehttp://www.securityfocus.com/archive/1/475066/100/0/threaded
• cve@mitrehttp://www.securityfocus.com/archive/1/480738/100/0/threaded
• cve@mitrehttp://www.securityfocus.com/archive/1/480757/100/0/threaded
• cve@mitrehttp://www.securityfocus.com/archive/1/480809/100/0/threaded
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/39037
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/39038
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/39039
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/39040