PT-2008-4644 · Joomla · Joomla!

Hanno Böck

·

Published

2008-07-18

·

Updated

2022-05-01

·

CVE-2008-3228

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions: Joomla! versions prior to 1.5.4
Description: The issue concerns the configuration of .htaccess files to apply security checks for SEF URLs, which may leave them open to common exploits. The impact and specifics of remote attack vectors are not detailed.
Recommendations: For versions prior to 1.5.4, update to version 1.5.4 or later to ensure .htaccess is properly configured to block common exploits for SEF URLs.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-16

Related Identifiers

CVE-2008-3228
GHSA-MXR8-PCPG-M23J

Affected Products

Joomla!