Categories

Applications (282)
Blogs (7)
Content Management (190)
Customer Relationship (4)
Discussion Boards (41)
E-Commerce (15)
General Purpose Directories (2)
Image Galleries (21)
Mailing Lists (1)
Tips (3)
Vulnerabilities (393)
Access Bypass (64)
Cross Site Scripting (147)
Denial Of Service (2)
File Inclusion (55)
Information Disclosure (15)
Privilege Escalation (3)
Remote Command Execution (18)
Session Hijacking (2)
SQL Injection (150)
« php Help Agent File Inclusion
Joomla DT Register Component SQLi »

Joomla “token” Password Change

Published by TL Guan August 15th, 2008 in Access Bypass and Content Management.

Application: Joomla
Affected Version: all 1.5.x versions prior to 1.5.6.
Vendor’s URL: Joomla
Bug Type: Security Bypass
Risk Level: Critical

Solution:
Update to version 1.5.6.
http://developer.joomla.org/security/news/241-20080801-core-password-remind-functionality.html

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional