Security Centre

There is always a great deal of Joomla! development activity underway and communicating with other developers in the community is essential. This site is a resource for anyone looking to build or maintain software based on the Joomla! platform.

Where to Start

Download Documentation Support Report an Issue Volunteer Roadmap

Review Tracker Volunteer Activity Volunteer Report New Issue Roadmap

Download Documentation Support Report an Issue Contribute Roadmap

Project: Joomla!
SubProject: All
Severity: Low
Versions: 1.5.15 and all previous 1.5 releases
Exploit type: Code upload
Reported Date: 2009-Dec-30
Fixed Date: 2010-Apr-23

Description

The migration script in the Joomla! installer does not check the file type being uploaded. If the installation application is present, an attacker could use it to upload malicious files to a server.

Affected Installs

All 1.5.x installs prior to and including 1.5.15 are affected.

Solution

Upgrade to the latest Joomla! version (1.5.16 or later)

Contact

The JSST at the Joomla! Security Centre.

Reported By: Nicola Bettini

Project: Joomla!
SubProject: All
Severity: Moderate
Versions: 1.5.15 and all previous 1.5 releases
Exploit type: information Disclosure
Reported Date: 2010-Feb-21
Fixed Date: 2010-Apr-23

Description

If a user entered a URL with a negative query limit or offset, a PHP notice would display revealing information about the system.

Affected Installs

All 1.5.x installs prior to and including 1.5.15 are affected.

Solution

Upgrade to the latest Joomla! version (1.5.16 or later)

Contact

The JSST at the Joomla! Security Centre.

Reported By: Security List

Project: Joomla!
SubProject: All
Severity: Low
Versions: 1.5.14 and all previous 1.5 releases
Exploit type: Extension Version Disclosure
Reported Date: 2009-October-13
Fixed Date: 2009-Nov-03

Description

It is possible to read the contents of an extension's XML file and find the version number of the installed extension. This could allow people to exploit a known security flaws for a specific version of an extension.

Affected Installs

All 1.5.x installs prior to and including 1.5.14 are affected.

Solution

Turn on Apache mod_rewrite and configure your .htaccess file to filter out XML files. In the htaccess.txt file shipped with version 1.5.15, lines 35-39 contain example code that will deny access to XML files. You can incorporate this code (or similar code) into your .htaccess file. Be sure to test that it does not cause problems on your site.

Contact

The JSST at the Joomla! Security Centre.

Reported By: WHK and Gergő Erdősi

Developer Network™

Where to Start

[20100423] - Core - Installer Migration Script

Description

Affected Installs

Solution

Contact

[20100423] - Core - Negative Values for Limit and Offset

Description

Affected Installs

Solution

Contact

[20091103] - Core - XML File Read Issue

Description

Affected Installs

Solution

Contact