Vulnerabilities > CVE-2006-4469 - Unspecified vulnerability in Joomla Joomla!

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
joomla
nessus

Summary

Unspecified vulnerability in PEAR.php in Joomla! before 1.0.11 allows remote attackers to perform "remote execution," related to "Injection Flaws."

Nessus

NASL familyCGI abuses
NASL idJOOMLA_1011_CMD_EXEC.NASL
descriptionThe version of Joomla! installed on the remote host is affected by a remote code execution vulnerability in the includes/PEAR/PEAR.php script. An unauthenticated, remote attacker can exploit this to execute arbitrary code, subject to the privileges of the web server user ID. Note that successful exploitation of this vulnerability requires that the PHP
last seen2020-06-01
modified2020-06-02
plugin id22298
published2006-09-01
reporterThis script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/22298
titleJoomla! < 1.0.11 Unspecified Remote Code Execution