oss-sec mailing list archives
Re: Joomla 1.5.x core.
From: Nico Golde <oss-security+ml () ngolde de>
Date: Wed, 13 Aug 2008 12:34:43 +0200
Hi Emanuele, * Emanuele Gentili <emgent () ubuntu com> [2008-08-13 11:04]:
New hight security issue was found in Joomla 1.5.x that allow remote admin password change via com_user core component. More info are available here [¹] [¹] http://en.emanuele-gentili.com/index.php/wh/joomla/
What a shameless plug ;) BTW http://www.milw0rm.com/exploits/6234 is the original advisory. Cheers Nico -- Nico Golde - http://www.ngolde.de - nion () jabber ccc de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
Attachment:
_bin
Description:
Current thread:
- Joomla 1.5.x core. Emanuele Gentili (Aug 12)
- Re: Joomla 1.5.x core. Nico Golde (Aug 13)
- Re: Joomla 1.5.x core. Steven M. Christey (Aug 14)
- Re: Joomla 1.5.x core. Nico Golde (Aug 13)