plugins/system/remember/remember.php in Joomla! 2.5.x prior to 2.5.10 and 3.0.x prior to 3.0.4 does not properly handle an object obtained by unserializing a cookie, which allows remote authenticated users to conduct PHP object injection attacks and cause a denial of service via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joomla joomla\\! 3.0.2 |
||
joomla joomla\\! 3.0.0 |
||
joomla joomla\\! 3.0.1 |
||
joomla joomla\\! 3.0.3 |
||
joomla joomla\\! 2.5.6 |
||
joomla joomla\\! 2.5.8 |
||
joomla joomla\\! 2.5.1 |
||
joomla joomla\\! 2.5.2 |
||
joomla joomla\\! 2.5.3 |
||
joomla joomla\\! 2.5.4 |
||
joomla joomla\\! 2.5.9 |
||
joomla joomla\\! 2.5.0 |
||
joomla joomla\\! 2.5.5 |
||
joomla joomla\\! 2.5.7 |