Vulnerabilities > CVE-2006-4470 - Unspecified vulnerability in Joomla Joomla!

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

joomla

NVD

Published: 2006-08-31

Updated: 2021-10-01

Summary

Joomla! before 1.0.11 omits some checks for whether _VALID_MOS is defined, which allows attackers to have an unknown impact, possibly resulting in PHP remote file inclusion.

Vulnerable Configurations

Part	Description	Count
Application	Joomla Joomla Joomla! - Joomla Joomla! 1.0.0 Joomla Joomla! 1.0.1 Joomla Joomla! 1.0.2 Joomla Joomla! 1.0.3 Joomla Joomla! 1.0.4 Joomla Joomla! 1.0.5 Joomla Joomla! 1.0.6 Joomla Joomla! 1.0.7 Joomla Joomla! 1.0.8 Joomla Joomla! 1.0.9 Joomla Joomla! 1.0.10	12

References

http://www.joomla.org/content/view/1841/78/
http://www.joomla.org/content/view/1843/74/
http://secunia.com/advisories/21666
http://www.vupen.com/english/advisories/2006/3408
https://exchange.xforce.ibmcloud.com/vulnerabilities/28631