PHP remote file inclusion vulnerability in server.php in the Hashcash Component (com_hashcash) 1.2.1 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Max CVSS
6.8
EPSS Score
8.08%
Published
2006-07-21
Updated
2017-10-19
Heap-based buffer overflow in the array_push function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries.
Max CVSS
7.5
EPSS Score
2.02%
Published
2006-06-27
Updated
2017-07-20
2 vulnerabilities found