Joomla! 1.7 < 1.7.2 Multiple Information Disclosure Vulnerabilities (deprecated)

Medium Nessus Network Monitor Plugin ID 6046


The remote web server has an application that is vulnerable to multiple attack vectors.


The remote web server is hosting Joomla!, a content management system written in PHP.

Versions of Joomla 1.7 earlier than 1.7.2 are potentially affected by multiple information disclosure vulnerabilities :

- A weak encryption mechanism could lead to information disclosure.

- Inadequate error checking could lead to information disclosure.


Upgrade to Joomla! 1.7.2 or later.

See Also

Plugin Details

Severity: Medium

ID: 6046

File Name: 6046.prm

Family: CGI

Published: 2011/10/17

Modified: 2015/06/01

Dependencies: 1442

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Patch Publication Date: 2011/10/17

Vulnerability Publication Date: 2011/10/17

Reference Information

BID: 50188