JRequest in Joomla! 1.5 before 1.5.7 does not sanitize variables that were set with JRequest::setVar, which allows remote attackers to conduct "variable injection" attacks and have unspecified other impact.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2008-09-18 10:59
Updated : 2017-08-07 18:32
NVD link : CVE-2008-4105
Mitre link : CVE-2008-4105
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
joomla
- joomla