Vulnerabilities > Joomla > Joomla > 1.5.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-09-18 | CVE-2008-4104 | Link Following vulnerability in Joomla Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL. | 5.8 |
2008-09-18 | CVE-2008-4103 | Improper Input Validation vulnerability in Joomla COM Mailto The mailto (aka com_mailto) component in Joomla! 1.5 before 1.5.7 sends e-mail messages without validating the URL, which allows remote attackers to transmit spam. | 5.0 |
2008-09-18 | CVE-2008-4102 | Numeric Errors vulnerability in Joomla Joomla! 1.5 before 1.5.7 initializes PHP's PRNG with a weak seed, which makes it easier for attackers to guess the pseudo-random values produced by PHP's mt_rand function, as demonstrated by guessing password reset tokens, a different vulnerability than CVE-2008-3681. | 7.5 |