Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3829)

Description

Joomla! 2.5.3 allows remote attackers to obtain the installation path via the Host HTTP Header.

Remediation

References

Related Vulnerabilities

osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43720)

MathJax Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1999024)

TYPO3 Improper Input Validation Vulnerability (CVE-2009-0258)

WordPress Plugin Comment Attachment Cross-Site Scripting (1.5.5)

phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3197)

Severity

Medium

Classification

CVE-2012-3829 CWE-200

Tags

Missing Update Known Vulnerabilities