Description
Joomla! before 1.0.11 omits some checks for whether _VALID_MOS is defined, which allows attackers to have an unknown impact, possibly resulting in PHP remote file inclusion.
Remediation
References
Related Vulnerabilities
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0372)
WordPress Plugin WP-Stateless-Google Cloud Storage Remote Code Execution (2.2.0)
Oracle Database Server CVE-2006-0257 Vulnerability (CVE-2006-0257)
Jboss EAP Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-1000180)
Sqlite Improper Input Validation Vulnerability (CVE-2016-6153)