• IDP Daily Update #1375
  posted: 02/27/09
  
• NSM Daily Update #1375
  posted: 02/27/09
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1375
  posted: 02/27/09
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1361
  posted: 02/27/09
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 02/26/09

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: ChronoEngine ChronoForms mosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities

Severity: HIGH

Description:

ChronoEngine ChronoForms is a component for the Joomla! content manager.

The application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input to the 'mosConfig_absolute_path' parameter of the following scripts:

'administrator/components/com_chronocontact/excelwriter/PPS/File.php'
'administrator/components/com_chronocontact/excelwriter/Writer.php'
'administrator/components/com_chronocontact/excelwriter/PPS.php'
'administrator/components/com_chronocontact/excelwriter/Writer/BIFFwriter.php'
'administrator/components/com_chronocontact/excelwriter/Writer/Workbook.php'
'administrator/components/com_chronocontact/excelwriter/Writer/Worksheet.php'
'administrator/components/com_chronocontact/excelwriter/Writer/Format.php'

An attacker can exploit these issues to execute malicious PHP code in the context of the webserver process. This may allow the attacker to compromise the application and the underlying system; other attacks are also possible.

These issues affect ChronoForms 2.3.5; other versions may also be vulnerable.

Affected Products:

• ChronoEngine ChronoForms 2.3.5

References:

• ChronoEngine: ChronoForms Homepage