CVE-2012-1611 โ€” Joomla ! vulnerability

CWE-2647 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
0.0%
top 93.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Joomla !
Timeline
PublishedSep 6
Latest updateMay 17

Description

Joomla! 2.5.x before 2.5.4 does not properly check permissions, which allows attackers to obtain sensitive "administrative back end" information via unknown attack vectors. NOTE: this might be a duplicate of CVE-2012-1599.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

โ–ถNVDjoomla/joomla_!30 versions+29

๐Ÿ”ดVulnerability Details

4
GHSA
GHSA-wqv4-3whf-8xhx: Joomla! 2โ†—2022-05-17
โ–ถ
GHSA
GHSA-q3h7-j97j-xq8r: Joomla! 1โ†—2022-05-17
โ–ถ
CVEList
CVE-2012-1599: Joomla! 1โ†—2012-12-03
โ–ถ
CVEList
CVE-2012-1611: Joomla! 2โ†—2012-09-06
โ–ถ

๐Ÿ’ฅExploits & PoCs

1
Exploit-DB
Linux Kernel (Debian 7.7/8.5/9.0 / Ubuntu 14.04.2/16.04.2/17.04 / Fedora 22/25 / CentOS 7.3.1611) - 'ldso_hwcap_64 Stack Clash' Local Privilege Escalationโ†—2017-06-28
โ–ถ
CVE-2012-1611 โ€” Joomla ! vulnerability | cvebase