Joomla! 1.5 < 1.5.24 Information Disclosure Vulnerability (deprecated)

Medium Nessus Network Monitor Plugin ID 6045

Synopsis

The remote web server has an application that is affected by an information disclosure vulnerability.

Description

The remote web server is hosting Joomla!, a content management system written in PHP.

Versions of Joomla! 1.5.x earlier than 1.5.24 are potentially affected by an information disclosure vulnerability due to the use of weak encryption.

Solution

Upgrade to Joomla! 1.5.24 or later.

See Also

http://developer.joomla.org/security/news/372-20111003-core-information-disclosure

Plugin Details

Severity: Medium

ID: 6045

Family: CGI

Published: 2011/11/24

Modified: 2015/06/01

Dependencies: 1442

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Patch Publication Date: 2011/10/17

Vulnerability Publication Date: 2011/10/17

Reference Information

BID: 50188