Description

Joomla! Core is prone to a spam vulnerability. Exploiting this issue may allow attackers to send spam through the affected website. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.22 are vulnerable.

Remediation

Update to Joomla! Core version 1.5.23 or latest

References

https://developer.joomla.org/joomlacode-archive/issue-24289.html

https://www.exploit-db.com/exploits/15979/

https://www.joomla.org/announcements/release-news/5367-joomla-1523-released.html

Related Vulnerabilities

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-2432)

Oracle Database Server CVE-2015-4753 Vulnerability (CVE-2015-4753)

MediaWiki CVE-2022-28209 Vulnerability (CVE-2022-28209)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4360)

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517)

Severity

High

Classification

CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update