Unrated severityNVD Advisory· Published Oct 12, 2007· Updated Jun 16, 2026
CVE-2007-5389
CVE-2007-5389
Description
PHP remote file inclusion vulnerability in preview.php in the swMenuFree (com_swmenufree) 4.6 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: a reliable third party disputes this issue because preview.php tests a certain constant to prevent direct requests
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:swmenupro:swmenufree:4.6:*:*:*:*:*:*:*
- Range: 4.6
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.