ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Joomla 0-Day exploit

    IT Discussion
    joomla zero-day exploit fixed
    3
    3
    1.2k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DustinB3403D
      DustinB3403
      last edited by DustinB3403

      Bug Description: Browser information is not filtered properly while saving the session values into the database which leads to a Remote Code Execution vulnerability.

      Affected Versions: 1.5.0 through 3.4.5

      Upgrade to: 3.4.6

      https://developer.joomla.org/security-centre/630-20151214-core-remote-code-execution-vulnerability.html

      gjacobseG 1 Reply Last reply Reply Quote 2
      • gjacobseG
        gjacobse @DustinB3403
        last edited by

        @DustinB3403
        Thanks - I'll have to keep this in mind the next I build a site... which hasn't been in years. ... but J! was my preference

        1 Reply Last reply Reply Quote 0
        • hobbit666H
          hobbit666
          last edited by

          Best get some update done tomorrow 🙂

          1 Reply Last reply Reply Quote 0
          • 1 / 1
          • First post
            Last post