Description

Joomla! before 1.5.4 allows attackers to access administration functionality, which has unknown impact and attack vectors related to a missing "LDAP security fix."

Remediation

References

CVE-2008-3225

Related Vulnerabilities

Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8864)

WordPress Plugin InBoundio Marketing Arbitrary File Upload (2.0.3)

WordPress Plugin Everest GPlaces Business Reviews includes Backdoor [Only if downloaded via the vendor website] (1.0.9)

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)

WordPress Plugin Form Lightbox Security Bypass (2.1)

Severity

Critical

Classification

CVE-2008-3225 CWE-264

Tags

Missing Update Known Vulnerabilities