Description
Joomla! Core is prone to multiple vulnerabilities, including security bypass, SQL injection, information disclosure and denial of service vulnerabilities. Exploiting these issues could allow an attacker to bypass intended access restrictions and perform otherwise restricted actions, to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database, to obtain sensitive information that may help in launching further attacks or to cause the affected website to consume memory and CPU resources, thus denying service to legitimate users. Joomla! Core versions 1.0.x ranging from 1.0.0 and up to and including 1.0.7 are vulnerable.
Remediation
Update to Joomla! Core version 1.0.8 or latest
References
http://www.securityfocus.com/archive/1/archive/1/426538/100/0/threaded
https://www.joomla.org/announcements/release-news/940-joomla-108-released.html
Related Vulnerabilities
Next.js URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-15242)
WordPress Plugin Testimonials by BestWebSoft Cross-Site Scripting (0.1.8)
WordPress Plugin 3D Product configurator for WooCommerce Arbitrary File Upload (1.5.531)
Oracle Application Server Other Vulnerability (CVE-2002-0564)
Oracle Application Server Other Vulnerability (CVE-2001-1372)