Description

The Admin Upload Image functionality in Joomla! before 1.0.11 allows remote authenticated users to upload files outside of the /images/stories/ directory via unspecified vectors.

Remediation

References

CVE-2006-4471

Related Vulnerabilities

WordPress Plugin Simple Slider 'New Image' Field Cross-Site Scripting (1.0)

SharePoint CVE-2022-38008 Vulnerability (CVE-2022-38008)

Grafana CVE-2022-39307 Vulnerability (CVE-2022-39307)

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.11)

Joomla! Core 1.5.x Spam (1.5.0 - 1.5.6)

Severity

Medium

Classification

CVE-2006-4471 CWE-434

Tags

Missing Update Known Vulnerabilities