CVE-2010-1435

Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.
Configurations

Configuration 1 (hide)

cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:14

Type Values Removed Values Added
References () https://developer.joomla.org/security-centre/308-20100423-core-password-reset-tokens.html - Vendor Advisory () https://developer.joomla.org/security-centre/308-20100423-core-password-reset-tokens.html - Vendor Advisory
References () https://www.acunetix.com/vulnerabilities/web/joomla-core-1-5-x-security-bypass-1-5-0-1-5-15/ - Third Party Advisory () https://www.acunetix.com/vulnerabilities/web/joomla-core-1-5-x-security-bypass-1-5-0-1-5-15/ - Third Party Advisory

Information

Published : 2021-06-21 23:15

Updated : 2024-11-21 01:14


NVD link : CVE-2010-1435

Mitre link : CVE-2010-1435

CVE.ORG link : CVE-2010-1435


JSON object : View

Products Affected

joomla

  • joomla\!
CWE
CWE-863

Incorrect Authorization