/*====== google reCaptcha ======*/
German Chinese (Traditional) Czech Danish English Filipino French Greek Hebrew Hindi Hungarian Irish Italian Japanese Korean Norwegian Persian Polish Portuguese Russian Spanish Swedish Thai Turkish

Bewertung: 0 / 5

Star InactiveStar InactiveStar InactiveStar InactiveStar Inactive
 
  • [20180301] - Core - SQLi vulnerability User Notes

    Security Announcements Mar 13, 2018 | 14:45 pm

    Project: Joomla!SubProject: CMSImpact: HighSeverity: LowVersions: 3.5.0 through 3.8.5Exploit type: SQLiReported Date: 2018-March-08Fixed Date: 2018-March-12CVE Number: CVE-2018-8045DescriptionThe lack of type casting of a variable in SQL statement leads to a SQL injection vulnerability in the User Notes list viewAffected InstallsJoomla! CMS versions 3.5.0 through[…]

    Read more...
  • [20180101] - Core - XSS vulnerability in module chromes

    Security Announcements Jan 30, 2018 | 15:45 pm

    Project: Joomla!SubProject: CMSImpact: ModerateSeverity: LowVersions: 3.0.0 through 3.8.3Exploit type: XSSReported Date: 2018-January-21Fixed Date: 2018-January-30CVE Number: CVE-2018-6380DescriptionLack of escaping in the module chromes leads to XSS vulnerabilities in the module system.Affected InstallsJoomla! CMS versions 3.0.0 through 3.8.3SolutionUpgrade to version 3.8.4ContactThe JSST at the[…]

    Read more...
  • [20171101] - Core - LDAP Information Disclosure

    Security Announcements Nov 7, 2017 | 16:00 pm

    Project: Joomla!SubProject: CMSSeverity: MediumVersions: 1.5.0 through 3.8.1Exploit type: Information DisclosureReported Date: 2017-October-06Fixed Date: 2017-November-07CVE Number: CVE-2017-14596DescriptionInadequate escaping in the LDAP authentication plugin can result in disclosure of username and password.Affected InstallsJoomla! CMS versions 1.5.0 through 3.8.1SolutionUpgrade to version 3.8.2ContactThe JSST[…]

    Read more...
  • [20170902] - Core - LDAP Information Disclosure

    Security Announcements Sep 19, 2017 | 16:00 pm

    Project: Joomla!SubProject: CMSSeverity: MediumVersions: 1.5.0 through 3.7.5Exploit type: Information DisclosureReported Date: 2017-July-27Fixed Date: 2017-September-19CVE Number: CVE-2017-14596DescriptionInadequate escaping in the LDAP authentication plugin can result into a disclosure of username and password.Affected InstallsJoomla! CMS versions 1.5.0 through 3.7.5SolutionUpgrade to version 3.8.0ContactThe[…]

    Read more...

 

 

Beitrag teilen

Submit to DeliciousSubmit to DiggSubmit to FacebookSubmit to Google PlusSubmit to StumbleuponSubmit to TechnoratiSubmit to TwitterSubmit to LinkedIn

Empfehlung

Go to top