CVE-2007-4185
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Joomla! 1.0.12 allows remote attackers to obtain sensitive information via a direct request for (1) Stat.php (2) OutputFilter.php, (3) OutputCache.php, (4) Modifier.php, (5) Reader.php, and (6) TemplateCache.php in includes/patTemplate/patTemplate/; (7) includes/Cache/Lite/Output.php; and other unspecified components, which reveal the path in various error messages.
Joomla! 1.0.12 permite a atacantes remotos obtener informaciĆ³n sensible mediante una peticiĆ³n directa a (1) Stat.php (2) OutputFilter.php, (3) OutputCache.php, (4) Modifier.php, (5) Reader.php, y (6) TemplateCache.php en includes/patTemplate/patTemplate/; (7) includes/Cache/Lite/Output.php; y otros componentes no especificados, lo cual revela la ruta en varios mensajes de error.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-08-07 CVE Reserved
- 2007-08-08 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-03 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/39037 | Vdb Entry | |
| http://osvdb.org/39038 | Vdb Entry | |
| http://osvdb.org/39039 | Vdb Entry | |
| http://osvdb.org/39040 | Vdb Entry | |
| http://osvdb.org/39041 | Vdb Entry | |
| http://osvdb.org/39042 | Vdb Entry | |
| http://osvdb.org/39043 | Vdb Entry | |
| http://www.securityfocus.com/archive/1/475066/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/480738/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/480757/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/480809/100/0/threaded | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|