CVE-2017-7983 — Sensitive Information Exposure in Joomla !

Severity

5.3MEDIUMNVD

EPSS

0.0%

top 99.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 25

Latest updateMay 17

Description

In Joomla! 1.5.0 through 3.6.5 (fixed in 3.7.0), mail sent using the JMail API leaked the used PHPMailer version in the mail headers.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

▶NVDjoomla/joomla_!107 versions+106

GHSA

GHSA-hhqj-m4pc-9w3p: In Joomla! 1↗2022-05-17

▶

CVEList

CVE-2017-7983: In Joomla! 1↗2017-04-25

▶