← back
CVE-2017-18345

CVE-2017-18345

EPSS 3.0%
The Joomanager component through 2.0.0 for Joomla! has an arbitrary file download issue, resulting in exposing the credentials of the database via an index.php?option=com_joomanager&controller=details&task=download&path=configuration.php request.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://cxsecurity.com/issue/WLB-2018030054https://vel.joomla.org/vel-blog/2020-joomanager-2-0-0-otherhttps://www.exploit-db.com/exploits/44252