Description
Joomla! Core is prone to multiple vulnerabilities, including security bypass and open redirect vulnerabilities. Exploiting these issues may allow attackers to perform otherwise restricted actions and subsequently bypass improperly configured .htaccess security checks, access administration area, access cached pages or to redirect users to arbitrary web sites and conduct phishing attacks; other attacks are also possible. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.3 are vulnerable.
Remediation
Update to Joomla! Core version 1.5.4 or latest
References
Related Vulnerabilities
PHP Numeric Errors Vulnerability (CVE-2008-2107)
WordPress Plugin Passster-Password Protection Cross-Site Scripting (3.5.5.7)
WordPress Plugin AB Press Optimizer Multiple Cross-Site Scripting Vulnerabilities (1.1.1)
WordPress Plugin RSVP and Event Management Cross-Site Scripting (2.3.7)
WordPress Plugin Retain Live Chat Cross-Site Scripting (0.1)