← back
CVE-2007-4781

CVE-2007-4781

EPSS 5.2%
administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/4350unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/45888https://exchange.xforce.ibmcloud.com/vulnerabilities/36424https://www.exploit-db.com/exploits/4350http://www.securityfocus.com/bid/25508