Joomla! 2.5.x < 3.7.0 Multiple Vulnerabilities

According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - A flaw exists in the JMail API due to PHPMail version information being included in mail headers. An unauthenticated, remote attacker can exploit this to disclose sensitive...

Joomla! 3.5.x < 3.7.0 Multiple Vulnerabilities

According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - A flaw exists in the JMail API due to PHPMail version information being included in mail headers. An unauthenticated, remote attacker can exploit this to disclose sensitive...

CVE-2017-7989

In Joomla! 3.2.0 through 3.6.5 fixed in 3.7.0, inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden...

CVE-2017-7989

In Joomla! 3.2.0 through 3.6.5 fixed in 3.7.0, inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden...

CVE-2017-7989

CVE-2017-7989 affects Joomla! 3.2.0–3.6.5 (fixed in 3.7.0). The underlying issue is inadequate MIME type checks, enabling an authenticated, low-privilege user to upload SWF files even when this action is forbidden for that privilege level. Connected records corroborate the existence of a MIME‑typ...