CVE-2008-3228

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
joomlajoomla
𝑥
≤ 1.5.3
joomlajoomla
1.0
joomlajoomla
1.0.0
joomlajoomla
1.0.1
joomlajoomla
1.0.2
joomlajoomla
1.0.3
joomlajoomla
1.0.4
joomlajoomla
1.0.5
joomlajoomla
1.0.6
joomlajoomla
1.0.7
joomlajoomla
1.0.8
joomlajoomla
1.0.9
joomlajoomla
1.0.10
joomlajoomla
1.0.11
joomlajoomla
1.0.12
joomlajoomla
1.0.13
joomlajoomla
1.03
joomlajoomla
1.5
joomlajoomla
1.5.0_beta:_beta
joomlajoomla
1.5.0_beta1:_beta1
joomlajoomla
1.5.0_beta2:_beta2
joomlajoomla
1.5.0_rc1:_rc1
joomlajoomla
1.5.1
joomlajoomla
1.5.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.joomla.org/content/view/5180/1/
http://www.joomla.org/content/view/5180/1/1/1/#htaccess
http://www.openwall.com/lists/oss-security/2008/07/12/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/44206
http://www.joomla.org/content/view/5180/1/
http://www.joomla.org/content/view/5180/1/1/1/#htaccess
http://www.openwall.com/lists/oss-security/2008/07/12/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/44206