0
- [20120201] - Core - Information Disclosure
- [20120202] - Core - Information Disclosure
- [20120203] - Core - Information Disclosure
Posted: 01 Feb 2012 09:25 PM PST
2]Project: Joomla!
2]SubProject: All
2]Severity: Low
2]Versions: 2.5.0 and 1.7.0 - 1.7.4
2]Exploit type: Information Disclosure
2]Reported Date: 2012-January-29
2]Fixed Date: 2012-February-02
Description
Inadequate validation leads to information disclosure in administrator.
Affected Installs
Joomla! version 2.5.0, 1.7.4, and all earlier 1.7.x versions
Solution
Upgrade to version 1.7.5 or 2.5.1 or higher
Reported by Jakub Galczyk
Contact
The JSST at the Joomla! Security Center.
[20120202] - Core - Information Disclosure
Posted: 01 Feb 2012 09:25 PM PST
2]Project: Joomla!
2]SubProject: All
2]Severity: Moderate
2]Versions: 1.7.4 and all earlier 1.7.x versions
2]Exploit type: Information Disclosure
2]Reported Date: 2012-January-06
2]Fixed Date: 2012-February-02
Description
On some servers the error log could be read by unauthorised users.
Affected Installs
Joomla! version 1.7.4 and all earlier 1.7.x versions
Solution
Upgrade to version 2.5.1 or 1.7.5 or higher
Reported by Alain Rivest
Contact
The JSST at the Joomla! Security Center.
[20120203] - Core - Information Disclosure
Posted: 01 Feb 2012 09:25 PM PST
2]Project: Joomla!
2]SubProject: All
2]Severity: Low
2]Versions: 2.5.0 and 1.7.0 - 1.7.4
2]Exploit type: Information Disclosure
2]Reported Date: 2012-January-29
2]Fixed Date: 2012-February-02
Description
Inadequate validation leads to path disclosure in administrator.
Affected Installs
Joomla! version 2.5.0, 1.7.4, and all earlier 1.7.x versions
Solution
Upgrade to version 2.5.1 or 1.7.5 or higher
Reported by Jakub Galczyk
Contact
The JSST at the Joomla! Security Center.
