Cross-site request forgery (CSRF) vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.2 allows remote attackers to hijack the authentication of unspecified victims for requests that upload code via unknown vectors.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:32
Type | Values Removed | Values Added |
---|---|---|
References | () http://developer.joomla.org/security-centre/618-20150602-core-remote-code-execution.html - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/76495 - | |
References | () http://www.securitytracker.com/id/1032796 - |
Information
Published : 2015-07-14 16:59
Updated : 2024-11-21 02:32
NVD link : CVE-2015-5397
Mitre link : CVE-2015-5397
CVE.ORG link : CVE-2015-5397
JSON object : View
Products Affected
joomla
- joomla\!
CWE
CWE-352
Cross-Site Request Forgery (CSRF)