Vulnerability Details CVE-2007-6642
Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! before 1.5 RC4 allow remote attackers to (1) add a Super Admin, (2) upload an extension containing arbitrary PHP code, and (3) modify the configuration as administrators via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.4%
CVSS Severity
CVSS v2 Score 6.8
References
- http://osvdb.org/41263
- http://secunia.com/advisories/29257
- http://securityreason.com/securityalert/3505
- http://securitytracker.com/id?1019145
- http://www.joomla.org/content/view/4335/116/
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:060
- http://www.securityfocus.com/archive/1/485676/100/0/threaded
- http://www.securityfocus.com/bid/28111
- http://osvdb.org/41263
- http://secunia.com/advisories/29257
- http://securityreason.com/securityalert/3505
- http://securitytracker.com/id?1019145
- http://www.joomla.org/content/view/4335/116/
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:060
- http://www.securityfocus.com/archive/1/485676/100/0/threaded
- http://www.securityfocus.com/bid/28111