7.3 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
75.3%
The Helpdesk Pro plugin before 1.4.0 for Joomla! allows remote attackers to write to arbitrary .ini files via a crafted language.save task.
packetstormsecurity.com/files/132766/Joomla-Helpdesk-Pro-XSS-File-Disclosure-SQL-Injection.html
seclists.org/fulldisclosure/2015/Jul/102
www.securityfocus.com/bid/75971
www.exploit-db.com/exploits/37666/