CVE-2009-4094

D4J eZine (com_ezine) 2.1 - Remote Code Execution via GLOBALS[mosConfig_absolute_path] Parameter

Title source: manual
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-4094. PoCs published by kaMtiEz.

AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in the Joomla/Mambo component com_ezine version 2.1. The vulnerability allows an attacker to include arbitrary remote files by manipulating the `GLOBALS[mosConfig_absolute_path]` parameter in the `d4m_ajax_pagenav.php` file.

Description

PHP remote file inclusion vulnerability in class/php/d4m_ajax_pagenav.php in the D4J eZine (com_ezine) component 2.1 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[mosConfig_absolute_path parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by kaMtiEz · textwebappsphp
https://www.exploit-db.com/exploits/10178

This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in the Joomla/Mambo component com_ezine version 2.1. The vulnerability allows an attacker to include arbitrary remote files by manipulating the `GLOBALS[mosConfig_absolute_path]` parameter in the `d4m_ajax_pagenav.php` file.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Joomla/Mambo com_ezine component v2.1
No auth needed
Prerequisites: Access to the vulnerable component via URL · Remote file hosting for RFI payload
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/37043
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/54307

Scores

EPSS 0.0228
EPSS Percentile 80.8%

Details

CWE
CWE-94
Status published
Products (1)
designforjoomla/com_ezine 2.1
Published Nov 29, 2009
Tracked Since Feb 18, 2026