Vulnerabilities > CVE-2012-5827 - Clickjacking Security Bypass vulnerability in Joomla!

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

joomla

NVD

Published: 2012-11-11

Updated: 2017-08-29

Summary

Joomla! 2.5.x before 2.5.8 and 3.0.x before 3.0.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors involving "Inadequate protection."

Vulnerable Configurations

Part	Description	Count
Application	Joomla Joomla Joomla! 2.5.0 Joomla Joomla! 2.5.1 Joomla Joomla! 2.5.2 Joomla Joomla! 2.5.3 Joomla Joomla! 2.5.4 Joomla Joomla! 2.5.5 Joomla Joomla! 2.5.6 Joomla Joomla! 2.5.7	8

References

http://developer.joomla.org/security/news/543-20121101-core-clickjacking.html
http://developer.joomla.org/security/news/544-20121102-core-clickjacking.html
http://secunia.com/advisories/51187
http://www.securityfocus.com/bid/56397
http://www.securitytracker.com/id?1027744
https://exchange.xforce.ibmcloud.com/vulnerabilities/79925