Detections
Analytics

FreeBSD : Joomla! -- Core - Multiple Vulnerabilities (9fa1a0ac-b2e0-11e3-bb07-6cf0490a8c18)

high Nessus Plugin ID 73152

Language:

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

The JSST and the Joomla! Security Center report : [20140301] - Core - SQL Injection Inadequate escaping leads to SQL injection vulnerability. [20140302] - Core - XSS Vulnerability Inadequate escaping leads to XSS vulnerability in com_contact. [20140303] - Core
- XSS Vulnerability Inadequate escaping leads to XSS vulnerability.
[20140304] - Core - Unauthorised Logins Inadequate checking allowed unauthorised logins via GMail authentication.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?356cb20e

http://www.nessus.org/u?e5e7e44a

http://www.nessus.org/u?47f311a4

http://www.nessus.org/u?b9bf48e7

http://www.nessus.org/u?ea9bbcfb

Plugin Details

Severity: High

ID: 73152

File Name: freebsd_pkg_9fa1a0acb2e011e3bb076cf0490a8c18.nasl

Version: 1.8

Type: local

Published: 3/24/2014

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:joomla2, p-cpe:/a:freebsd:freebsd:joomla3, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 3/23/2014

Vulnerability Publication Date: 3/1/2014