Vulnerabilities > CVE-2006-4469 - Unspecified vulnerability in Joomla Joomla!

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

nessus

NVD

Published: 2006-08-31

Updated: 2021-10-01

Summary

Unspecified vulnerability in PEAR.php in Joomla! before 1.0.11 allows remote attackers to perform "remote execution," related to "Injection Flaws."

Part	Description	Count
Application	Joomla Joomla Joomla! - Joomla Joomla! 1.0.0 Joomla Joomla! 1.0.1 Joomla Joomla! 1.0.2 Joomla Joomla! 1.0.3 Joomla Joomla! 1.0.4 Joomla Joomla! 1.0.5 Joomla Joomla! 1.0.6 Joomla Joomla! 1.0.7 Joomla Joomla! 1.0.8 Joomla Joomla! 1.0.9 Joomla Joomla! 1.0.10	12

NASL family	CGI abuses
NASL id	JOOMLA_1011_CMD_EXEC.NASL
description	The version of Joomla! installed on the remote host is affected by a remote code execution vulnerability in the includes/PEAR/PEAR.php script. An unauthenticated, remote attacker can exploit this to execute arbitrary code, subject to the privileges of the web server user ID. Note that successful exploitation of this vulnerability requires that the PHP
last seen	2020-06-01
modified	2020-06-02
plugin id	22298
published	2006-09-01
reporter	This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/22298
title	Joomla! < 1.0.11 Unspecified Remote Code Execution