Joomla! 1.6 < 1.6.1 Multiple Vulnerabilities (deprecated)

medium Nessus Network Monitor Plugin ID 5878

Synopsis

The remote web server has an application that is vulnerable to multiple attack vectors.

Description

The remote web server is hosting Joomla!, a content management system written in PHP.

Versions of Joomla 1.6 earlier than 1.6.1 are potentially affected by multiple vulnerabilities :

- An unspecified SQL injection and path disclosure issue. (20110201)

- An uncaught exception could cause full path disclosure. (20110202)

- Inadequate checking for double URI encoding could lead to cross-site scripting vulnerabilities. (20110203)

- Inadequate filtering exposes cross-site scripting vulnerabilities. (20110204)

- Inadequate access checking leads to information disclosure. (20110301)

- There is inadequate checking of redirect URLs. (20110302)

- Inadequate filtering causes information disclosure. (20110303)

- There is inadequate control of which files can be edited by authenticated users. (20110304)

- Inadequate token checking leads to a cross-site request forgery vulnerability. (20110305)

- Editor caching can cause a denial of service by filling up the disk. (20110306)

- Inadequate filtering exposes cross-site scripting vulnerabilities. (20110307)

- Inadequate token checking leads to a cross-site request forgery vulnerability. (20110308)

Solution

Upgrade to Joomla! 1.6.1 or later.

See Also

http://developer.joomla.org/security/news/328-20110201-core-sql-injection-path-disclosure

http://developer.joomla.org/security/news/329-20110202-core-path-disclosure

http://developer.joomla.org/security/news/330-20110203-core-xss-vulnerabilities

http://developer.joomla.org/security/news/331-20110204-core-xss-vulnerabilities

http://developer.joomla.org/security/news/332-20110301-core-information-disclosure

http://developer.joomla.org/security/news/333-20110302-core-redirect-vulnerabilities

http://developer.joomla.org/security/news/334-20110303-core-information-disclosure

http://developer.joomla.org/security/news/335-20110304-core-unauthorised-access

http://developer.joomla.org/security/news/336-20110305-core-csrf-vulnerability

http://developer.joomla.org/security/news/337-20110306-core-dos-vulnerabilities

http://developer.joomla.org/security/news/338-20110307-core-xss-vulnerabilities

http://developer.joomla.org/security/news/339-20110308-core-csrf-vulnerability

Plugin Details

Severity: Medium

ID: 5878

Family: CGI

Published: 4/1/2011

Updated: 6/1/2015

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

Patch Publication Date: 3/7/2011

Vulnerability Publication Date: 3/7/2011

Reference Information

BID: 46787, 46846