Joomla : Security Vulnerabilities, CVEs, Published In January 2006
Multiple unspecified vulnerabilities in the (1) publishing component, (2) Contact Component, (3) TinyMCE Compressor, and (4) other components in Joomla! 1.0.5 and earlier have unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
0.21%
Published
2006-01-19
Updated
2008-09-05
The vCard functions in Joomla! 1.0.5 use predictable sequential IDs for vcards and do not restrict access to them, which allows remote attackers to obtain valid e-mail addresses to conduct spam attacks by modifying the contact_id parameter to index2.php.
Max CVSS
5.0
EPSS Score
1.21%
Published
2006-01-09
Updated
2017-07-20
2 vulnerabilities found