Description

Joomla! before 1.5.12 does not perform a JEXEC check in unspecified files, which allows remote attackers to obtain the installation path via unspecified vectors.

Remediation

References

CVE-2011-4911

Related Vulnerabilities

XWiki CVE-2022-31166 Vulnerability (CVE-2022-31166)

WordPress Plugin Custom Banners Cross-Site Scripting (1.2.2.2)

Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.37)

WordPress Plugin Ruven Toolkit Cross-Site Scripting (1.1)

Oracle JRE CVE-2014-0449 Vulnerability (CVE-2014-0449)

Severity

Medium

Classification

CVE-2011-4911 CWE-20

Tags

Missing Update Known Vulnerabilities