CVE-2008-3225

Joomla! before 1.5.4 allows attackers to access administration functionality, which has unknown impact and attack vectors related to a missing "LDAP security fix."

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.joomla.org/content/view/5180/1/	Patch
http://www.openwall.com/lists/oss-security/2008/07/12/2
http://www.securityfocus.com/bid/30125
https://exchange.xforce.ibmcloud.com/vulnerabilities/43648
http://www.joomla.org/content/view/5180/1/	Patch
http://www.openwall.com/lists/oss-security/2008/07/12/2
http://www.securityfocus.com/bid/30125
https://exchange.xforce.ibmcloud.com/vulnerabilities/43648

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:joomla:joomla::::::::
	cpe:2.3:a:joomla:joomla:1.0:::::::*
	cpe:2.3:a:joomla:joomla:1.0.0:::::::*
	cpe:2.3:a:joomla:joomla:1.0.1:::::::*
	cpe:2.3:a:joomla:joomla:1.0.2:::::::*
	cpe:2.3:a:joomla:joomla:1.0.3:::::::*
	cpe:2.3:a:joomla:joomla:1.0.4:::::::*
	cpe:2.3:a:joomla:joomla:1.0.5:::::::*
	cpe:2.3:a:joomla:joomla:1.0.6:::::::*
	cpe:2.3:a:joomla:joomla:1.0.7:::::::*
	cpe:2.3:a:joomla:joomla:1.0.8:::::::*
	cpe:2.3:a:joomla:joomla:1.0.9:::::::*
	cpe:2.3:a:joomla:joomla:1.0.10:::::::*
	cpe:2.3:a:joomla:joomla:1.0.11:::::::*
	cpe:2.3:a:joomla:joomla:1.0.12:::::::*
	cpe:2.3:a:joomla:joomla:1.0.13:::::::*
	cpe:2.3:a:joomla:joomla:1.03:::::::*
	cpe:2.3:a:joomla:joomla:1.5:::::::*
	cpe:2.3:a:joomla:joomla:1.5.0_beta:::::::*
	cpe:2.3:a:joomla:joomla:1.5.0_beta1:::::::*
	cpe:2.3:a:joomla:joomla:1.5.0_beta2:::::::*
	cpe:2.3:a:joomla:joomla:1.5.0_rc1:::::::*
	cpe:2.3:a:joomla:joomla:1.5.1:::::::*
	cpe:2.3:a:joomla:joomla:1.5.2:::::::*

History

21 Nov 2024, 00:48

Type	Values Removed	Values Added
References	~~() http://www.joomla.org/content/view/5180/1/ - Patch~~	() http://www.joomla.org/content/view/5180/1/ - Patch
References	~~() http://www.openwall.com/lists/oss-security/2008/07/12/2 -~~	() http://www.openwall.com/lists/oss-security/2008/07/12/2 -
References	~~() http://www.securityfocus.com/bid/30125 -~~	() http://www.securityfocus.com/bid/30125 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/43648 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/43648 -

Information

Published : 2008-07-18 16:41

Updated : 2025-04-09 00:30

NVD link : CVE-2008-3225

Mitre link : CVE-2008-3225

CVE.ORG link : CVE-2008-3225

JSON object : View

Products Affected

joomla

joomla

CWE

CWE-264

Permissions, Privileges, and Access Controls

10.0 /10