A remote file inclusion vulnerability was reported in Joomla! core. It is possible for a remote attacker to extract a remotely hosted archive while you are extracting a backup archive or installing an update, depending on your server settings.
Affected versions: Versions: 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4.
Upgrade to the latest version of Joomla!.
Drupal Core 5.x Local File Inclusion (5.0 - 5.11)
WordPress Plugin Mini Mail Dashboard Widget 'abspath' Parameter Remote File Include (1.36)
WordPress Plugin Backup by Supsystic Local File Inclusion (2.3.9)
WordPress Plugin Gwolle Guestbook Remote File Inclusion (1.5.3)
WordPress Plugin NextGEN Gallery-WordPress Gallery Local File Inclusion (2.1.7)