| VID |
21971 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Joomla! program is vulnerable to multiple vulnerabilities which exist in versions prior to 1.0.11. Joomla! is an open-source contents management system written in PHP. Joomla! versions prior to 1.0.11 are vulnerable to multiple vulnerabilities via the 'administrator/index.php' script, which can be exploited by a remote attacker to conduct cross-site scripting attacks and to execute arbitrary code, and which can be affected by a number of other validation flaws.
* References:
http://www.joomla.org/content/view/1843/74/
http://www.securityfocus.com/archive/1/444743
* Platforms Affected:
Joomla! versions prior to 1.0.11
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Joomla! (1.0.11 or later), available from the Joomla! Web site at http://www.joomla.org/component/option,com_frontpage/Itemid,1/ |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
