Описание
The vCard functions in Joomla! 1.0.5 use predictable sequential IDs for vcards and do not restrict access to them, which allows remote attackers to obtain valid e-mail addresses to conduct spam attacks by modifying the contact_id parameter to index2.php.
The vCard functions in Joomla! 1.0.5 use predictable sequential IDs for vcards and do not restrict access to them, which allows remote attackers to obtain valid e-mail addresses to conduct spam attacks by modifying the contact_id parameter to index2.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-0114
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24042
- http://forge.joomla.org/sf/go/artf2950
- http://forum.joomla.org/index.php/topic%2C29031.0.html
- http://forum.joomla.org/index.php/topic,29031.0.html
- http://secunia.com/advisories/18361
- http://www.listerit.com/content/view/116/84
- http://www.securityfocus.com/bid/16185
- http://www.vupen.com/english/advisories/2006/0097
EPSS
CVE ID
Связанные уязвимости
The vCard functions in Joomla! 1.0.5 use predictable sequential IDs for vcards and do not restrict access to them, which allows remote attackers to obtain valid e-mail addresses to conduct spam attacks by modifying the contact_id parameter to index2.php.
EPSS