3 matches found
CVE-2012-4235
CVE-2012-4235 affects the RSGallery2 component (com_rsgallery2) for Joomla! 2.5.x prior to version 3.2.0. The root cause is that image directories do not contain index.html files, allowing remote attackers to enumerate image filenames by requesting a directory URI. The vulnerability is limited to...
CVE-2012-3554
CVE-2012-3554 is a SQL injection vulnerability affecting the RSGallery2 (com_rsgallery2) Joomla! component. Affected versions are Joomla! 1.5.x with RSGallery2 before 2.3.0 and Joomla! 2.5.x with RSGallery2 before 3.2.0. The vulnerability allows remote attackers to execute arbitrary SQL commands ...
CVE-2012-4071
The CVE-2012-4071 issue affects the RSGallery2 Joomla! extension (com_rsgallery2). It is an XSS vulnerability in the comments feature, exploitable via crafted BBCode markup in a comment. Affected versions are Joomla! 1.5.x with RSGallery2 before 2.3.0 and Joomla! 2.5.x with RSGallery2 before 3.2....