Detections
Analytics

Joomla! 1.7 < 1.7.2 Multiple Information Disclosure Vulnerabilities (deprecated)

medium Nessus Network Monitor Plugin ID 6046

Synopsis

The remote web server has an application that is vulnerable to multiple attack vectors.

Description

The remote web server is hosting Joomla!, a content management system written in PHP.

Versions of Joomla 1.7 earlier than 1.7.2 are potentially affected by multiple information disclosure vulnerabilities :

- A weak encryption mechanism could lead to information disclosure.

 - Inadequate error checking could lead to information disclosure.

Solution

Upgrade to Joomla! 1.7.2 or later.

See Also

http://developer.joomla.org/security/news/370-20111001-core-information-disclosure

http://developer.joomla.org/security/news/371-20111002-core-information-disclosure

Plugin Details

Severity: Medium

ID: 6046

Family: CGI

Published: 10/17/2011

Updated: 6/1/2015

Vulnerability Information

Patch Publication Date: 10/17/2011

Vulnerability Publication Date: 10/17/2011

Reference Information

BID: 50188