exploitDog

CVE-2007-4781

Опубликовано: 10 сент. 2007

Источник: nvd

CVSS2: 6.6

EPSS Низкий

Описание

administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:joomla:joomla:1.5.0_beta1:*:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla:1.5.0_beta2:*:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla:1.5.0_rc1:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00066

Низкий

6.6 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-mjh7-5rg5-q2qx

github

почти 4 года назад

administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.

EPSS

Процентиль: 21%

0.00066

Низкий

6.6 Medium

CVSS2

Дефекты

CWE-20