JRequest in Joomla! 1.5 prior to 1.5.7 does not sanitize variables that were set with JRequest::setVar, which allows remote malicious users to conduct "variable injection" attacks and have unspecified other impact.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joomla joomla 1.5 |
||
joomla joomla 1.5.1 |
||
joomla joomla 1.5.2 |
||
joomla joomla 1.5.3 |
||
joomla joomla 1.5.4 |
||
joomla joomla 1.5.5 |
||
joomla joomla 1.5.6 |