Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! prior to 1.5 RC4 allow remote malicious users to (1) add a Super Admin, (2) upload an extension containing arbitrary PHP code, and (3) modify the configuration as administrators via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joomla joomla 1.5rc4 |