Description

Joomla! Core is prone to a spam vulnerability. Exploiting this issue may allow attackers to send spam through the affected website. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.22 are vulnerable.

Remediation

Update to Joomla! Core version 1.5.23 or latest

References

https://developer.joomla.org/joomlacode-archive/issue-24289.html

https://www.exploit-db.com/exploits/15979/

https://www.joomla.org/announcements/release-news/5367-joomla-1523-released.html

Related Vulnerabilities

WordPress Plugin WP Editor.md Cross-Site Scripting (10.0.1)

phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-5976)

Moodle Incorrect Authorization Vulnerability (CVE-2024-43433)

SharePoint CVE-2020-0852 Vulnerability (CVE-2020-0852)

Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2007-1741)

Severity

High

Classification

CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update