CVE-2015-8564

Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via directory traversal sequences in the XML install file in an extension package archive.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:joomla:joomla\!:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:3.4.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-12-16 21:59

Updated : 2024-02-04 18:53


NVD link : CVE-2015-8564

Mitre link : CVE-2015-8564

CVE.ORG link : CVE-2015-8564


JSON object : View

Products Affected

joomla

  • joomla\!
CWE
CWE-20

Improper Input Validation

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')