Описание
Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! before 1.5 RC4 allow remote attackers to (1) add a Super Admin, (2) upload an extension containing arbitrary PHP code, and (3) modify the configuration as administrators via unspecified vectors.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:joomla:joomla:1.5rc4:*:*:*:*:*:*:*
EPSS
Процентиль: 2%
0.00014
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
github
почти 4 года назад
Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! before 1.5 RC4 allow remote attackers to (1) add a Super Admin, (2) upload an extension containing arbitrary PHP code, and (3) modify the configuration as administrators via unspecified vectors.
EPSS
Процентиль: 2%
0.00014
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-352