Joomla! before 1.5.15 allows remote attackers to read an extension's XML file, and thereby obtain the extension's version number, via a direct request.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-11-16 12:30
Updated : 2017-08-16 18:31
NVD link : CVE-2009-3946
Mitre link : CVE-2009-3946
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
joomla
- joomla\!