PT-2021-8329 · Joomla · Joomla! Core
Nicola Bettini
·
Published
2021-06-21
·
Updated
2021-06-25
·
CVE-2010-1433
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Joomla! Core versions 1.5.0 through 1.5.15
Description
The issue arises from the application's failure to properly verify user-supplied input, allowing attackers to upload arbitrary files. This can lead to the upload and execution of arbitrary code in the context of the webserver process, potentially facilitating unauthorized access or privilege escalation.
Recommendations
For Joomla! Core versions 1.5.0 through 1.5.15, update to a version that properly verifies user-supplied input to prevent arbitrary file uploads.
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Joomla! Core