Description

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors.

Remediation

References

CVE-2008-3228

Related Vulnerabilities

Bootstrap Table Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2021-23472)

Apache HTTP Server Improper Input Validation Vulnerability (CVE-2014-0117)

WordPress Plugin CMS Tree Page View Cross-Site Scripting (1.2.31)

MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2335)

WordPress Plugin Simple Events Calendar Multiple Vulnerabilities (1.3.5)

Severity

High

Classification

CVE-2008-3228

Tags

Missing Update Known Vulnerabilities