Frontpage

I am totally relaxed!

Because I know Joomlamonitor is working for me. Whenever my website is down, I get an instant alert (and a copy goes to my web-host too!)
Do you wanna try?

Searching for files online? File search system - best decision. Seop for search engine optimization. Now you can build a website by yourself.

[20120203] - Core - Information Disclosure

Project: Joomla!
SubProject: All
Severity: Low
Versions: 2.5.0 and 1.7.0 - 1.7.4
Exploit type: Information Disclosure
Reported Date: 2012-January-29
Fixed Date: 2012-February-02

Description

Inadequate validation leads to path disclosure in administrator.

Affected Installs

Joomla! version 2.5.0, 1.7.4, and all earlier 1.7.x versions

Solution

Upgrade to version 2.5.1 or 1.7.5 or higher

Reported by Jakub Galczyk

Contact

The JSST at the Joomla! Security Center.

Read full...

Author:

< Prev		Next >

More Articles in This Category
[20100703] - Core - XSS Vulnerabillitis in Back End [20090604] - Core - Frontend XSS - HTTP_REFERER not properly filtered [20110406] - Core - XSS Vulnerabilities [20110902] - Core - XSS Vulnerability [20110401] - Core - Information Disclosure	[20100702] - Core - XSS Vulnerabillitis in Back End [20110403] - Core - Information Disclosure [20110701] - XSS Vulnerability [20100701] - Core - SQL Injection / Internal Path Exposure [20120202] - Core - Information Disclosure