Published: 10/09/2007 Updated: 29/09/2017

CVSS v2 Base Score: 6.6 | Impact Score: 9.2 | Exploitability Score: 3.9

VMScore: 665

Vector: AV:N/AC:H/Au:S/C:N/I:C/A:C

administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
joomla joomla 1.5.0_rc1
joomla joomla 1.5.0_beta1
joomla joomla 1.5.0_beta2

#!/usr/bin/php -q -d short_open_tag=on <?php /* Explanation: Although the comment points out that the "filter" variable is supposedly cleansed there is no input validation being performed except for the fact that all input is being turned into lowercase Affected Files: components/com_content/models/archivephp components/com_content/model ...

CWE-20 http://www.securityfocus.com/bid/25508 http://osvdb.org/45888 https://exchange.xforce.ibmcloud.com/vulnerabilities/36424 https://www.exploit-db.com/exploits/4350 https://nvd.nist.gov https://www.exploit-db.com/exploits/4350/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-4781

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect