Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! before 1.5 RC4 allow remote attackers to (1) add a Super Admin, (2) upload an extension containing arbitrary PHP code, and (3) modify the configuration as administrators via unspecified vectors.
References
Configurations
Information
Published : 2008-01-03 17:46
Updated : 2018-10-15 14:55
NVD link : CVE-2007-6642
Mitre link : CVE-2007-6642
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
joomla
- joomla