CVE-2006-3970
PHP remote file inclusion vulnerability in lmo.php in the LMO Component (com_lmo) 1.0b2 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Date published : 2006-08-01
http://developer.joomla.org/sf/sfmain/do/viewProject/projects.lmo