Joomla 1.6 - Download Joomla 1.6, News about Joomla 1.6, Templates for Joomla 1.6, Extensions for Joomla 1.6

Miércole 8 de Septiembre de 2010
Text size
  • Increase font size
  • Default font size
  • Decrease font size
Home Seguridad
 Seguridad en Joomla

[20100704] - Core - XSS Vulnerabillitis in Back End

[20100704] - Core - XSS Vulnerabillitis in Back End
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium
  • Versions: 1.5.18 and all previous 1.5 releases
  • Exploit type: XSS Injection
  • Reported Date: 2010-June-1
  • Fixed Date: 2010-July-15

Description

Back-end user can inject Javascript in various administrator screens.

Affected Installs

All 1.5.x installs prior to and including 1.5.18 are affected.

Solution

Upgrade to the latest Joomla! version (1.5.18 or later)

Reported by oCERT.

Contact

The JSST at the Joomla! Security Center.

Continuar...
 

[20100703] - Core - XSS Vulnerabillitis in Back End

[20100703] - Core - XSS Vulnerabillitis in Back End
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium
  • Versions: 1.5.18 and all previous 1.5 releases
  • Exploit type: XSS Injection
  • Reported Date: 2010-...
Continuar...

[20100702] - Core - XSS Vulnerabillitis in Back End

[20100702] - Core - XSS Vulnerabillitis in Back End
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium
  • Versions: 1.5.18 and all previous 1.5 releases
  • Exploit type: XSS Injection
  • Reported Date: 2010-...
Continuar...

[20100701] - Core - SQL Injection / Internal Path Exposure

[20100701] - Core - SQL Injection / Internal Path Exposure
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 1.5.18 and all previous 1.5 releases
  • Exploit type: Internal Path Exposure
  • Reported Date...
Continuar...

[20100501] - Core - XSS Vulnerabilities in Back End

[20100501] - Core - XSS Vulnerabilities in Back End
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: High
  • Versions: 1.5.17 and all previous 1.5 releases
  • Exploit type: XSS Injection
  • Reported Date: 2010-Ma...
Continuar...

[20100423] - Core - Negative Values for Limit and Offset

[20100423] - Core - Negative Values for Limit and Offset
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Moderate
  • Versions: 1.5.15 and all previous 1.5 releases
  • Exploit type:  information Disclosure
  • Re...
Continuar...

[20100423] - Core - Installer Migration Script

[20100423] - Core - Installer Migration Script
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 1.5.15 and all previous 1.5 releases
  • Exploit type: Code upload
  • Reported Date: 2009-Dec-3...
Continuar...

[20100423] - Core - Sessation Fixation

[20100423] - Core - Sessation Fixation
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Moderate
  • Versions: 1.5.15 and all previous 1.5 releases
  • Exploit type: Session fixation
  • Reported Date:...
Continuar...

[20100423] - Core - Password Reset Tokens

[20100423] - Core - Password Reset Tokens
There are no translations available.

  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 1.5.15 and all previous 1.5 releases
  • Exploit type: Unauthorised Access
  • Reported Date: 20...
Continuar...
Página 1 de 2