The Admin Upload Image functionality in Joomla! before 1.0.11 allows remote authenticated users to upload files outside of the /images/stories/ directory via unspecified vectors.
References
Link | Resource |
---|---|
http://www.joomla.org/content/view/1841/78/ | Vendor Advisory |
http://www.joomla.org/content/view/1843/74/ | Vendor Advisory |
http://secunia.com/advisories/21666 | Third Party Advisory |
http://www.vupen.com/english/advisories/2006/3408 | Third Party Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/28630 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2006-08-31 13:04
Updated : 2021-10-04 06:27
NVD link : CVE-2006-4471
Mitre link : CVE-2006-4471
JSON object : View
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type
Products Affected
joomla
- joomla\!