TUCoPS :: Web :: CMS / Portals :: bx2197.htm

CSRF in joomla 1.0.11 stable version
CSRF in joomla 1.0.11 stable version
CSRF in joomla 1.0.11 stable version


Joomla(CMS) framework version 1.0.11 stable is susceptible to a CSRF attack which can compromise the super admin account and the whole application.=0D
The CSRF attack can be performed on the framework to =0D
change the super admin account password because the change password functionality does not asks for the current password.=0D
=0D
Other than this flaw there are multiple places where XSS have been identified.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH