Joomla!@1.5.1 Security Vulnerabilities and Issues — Joomla!@1.5.1 CVE List

Lucene search

JoomlaJoomla!1.5.1

5 matches found

CVE•added 2012/12/03 9:55 p.m.•50 views

CVE-2012-1598

Joomla! 1.5.x before 1.5.26 has unspecified impact and attack vectors related to "insufficient randomness" and a "password reset vulnerability."

7.5CVSS6.7AI score0.01457EPSS

CVE•added 2012/10/07 9:55 p.m.•39 views

CVE-2011-4910

Cross-site scripting (XSS) vulnerability in Joomla! before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

4.3CVSS5.9AI score0.00032EPSS

CVE•added 2012/10/07 9:55 p.m.•38 views

CVE-2011-4911

Joomla! before 1.5.12 does not perform a JEXEC check in unspecified files, which allows remote attackers to obtain the installation path via unspecified vectors.

5CVSS6.8AI score0.00411EPSS

CVE•added 2012/12/03 9:55 p.m.•38 views

CVE-2012-1599

Joomla! 1.5.x before 1.5.26 does not properly check permissions, which allows attackers to obtain sensitive "administrative back end information" via unknown vectors. NOTE: this might be a duplicate of CVE-2012-1611.

5CVSS6.3AI score0.00451EPSS

CVE•added 2012/10/07 9:55 p.m.•33 views

CVE-2011-4909

Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.5.12 allow remote attackers to inject arbitrary web script or HTML via the HTTP_REFERER header to (1) components/com_content/views/article/tmpl/form.php, (2) components/com_user/controller.php, (3) plugins/system/legacy/html.ph...

4.3CVSS5.9AI score0.00075EPSS