Description

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors.

Remediation

References

CVE-2008-3228

Related Vulnerabilities

WordPress Plugin Contact Form DB Cross-Site Scripting (2.10.29)

WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Scripting (2.6.5)

MySQL CVE-2021-35623 Vulnerability (CVE-2021-35623)

MongoDb Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-20803)

TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2019-19849)

Severity

High

Classification

CVE-2008-3228

Tags

Missing Update Known Vulnerabilities