Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Joomla! < 1.5.13 Multiple Vulnerabilities (deprecated)

High

Synopsis

The remote host is vulnerable to multiple attack vectors

Description

The installed version of Joomla! is earlier than 1.5.13. Such versions are reportedly affected by multiple vulnerabilities :

- A flaw which affects the TinyMCE editor would allow a remote attack to upload and execute arbitrary files

- A failure to parse user-supplied input to 'JEXEC' would allow a remote attacker to glean internal path information

Solution

Upgrade to Joomla! 1.5.13 or later.