Description
Joomla! before 1.0.11 omits some checks for whether _VALID_MOS is defined, which allows attackers to have an unknown impact, possibly resulting in PHP remote file inclusion.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Login Security and History Cross-Site Request Forgery (1.0)
WordPress Plugin Ajax Store Locator SQL Injection (1.2.0)
Drupal Core 5.x SQL Injection (5.0 - 5.14)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1318)
WordPress Plugin Aspose DOC Exporter Arbitrary File Download (1.0)