CVE-2007-4781

administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:joomla:joomla:1.5.0_rc1:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla:1.5.0_beta1:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla:1.5.0_beta2:*:*:*:*:*:*:*

Information

Published : 2007-09-10 14:17

Updated : 2017-09-28 18:29


NVD link : CVE-2007-4781

Mitre link : CVE-2007-4781


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

joomla

  • joomla