2 matches found
CVE-2015-7341
JNews Joomla Component before 8.5.0 allows arbitrary File Upload via Subscribers or Templates, as demonstrated by the .php5 extension...
CVE-2015-7341
CVE-2015-7341 affects the JNews Joomla Component prior to 8.5.0. The issue enables arbitrary file upload via Subscribers or Templates, demonstrated by the .php5 extension, potentially allowing upload of PHP files. Affected product: JNews Joomla Component (versions before 8.5.0). Root cause: impro...