Detections
Analytics
Joomla! 1.7 < 1.7.2 Multiple Information Disclosure Vulnerabilities (deprecated)
medium Nessus Network Monitor Plugin ID 6046
Synopsis
The remote web server has an application that is vulnerable to multiple attack vectors.Description
The remote web server is hosting Joomla!, a content management system written in PHP.Versions of Joomla 1.7 earlier than 1.7.2 are potentially affected by multiple information disclosure vulnerabilities :
- A weak encryption mechanism could lead to information disclosure.
- Inadequate error checking could lead to information disclosure.
Solution
Upgrade to Joomla! 1.7.2 or later.See Also
http://developer.joomla.org/security/news/370-20111001-core-information-disclosure
http://developer.joomla.org/security/news/371-20111002-core-information-disclosure
Plugin Details
Severity: Medium
ID: 6046
Family: CGI
Published: 10/17/2011
Updated: 6/1/2015
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
Vulnerability Information
Patch Publication Date: 10/17/2011
Vulnerability Publication Date: 10/17/2011
Reference Information
BID: 50188