CVE-2008-3228

EUVD-2008-3216
Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
Affected Products (NVD)
VendorProductVersion
joomlajoomla
𝑥
≤ 1.5.3
joomlajoomla
1.0
joomlajoomla
1.0.0
joomlajoomla
1.0.1
joomlajoomla
1.0.2
joomlajoomla
1.0.3
joomlajoomla
1.0.4
joomlajoomla
1.0.5
joomlajoomla
1.0.6
joomlajoomla
1.0.7
joomlajoomla
1.0.8
joomlajoomla
1.0.9
joomlajoomla
1.0.10
joomlajoomla
1.0.11
joomlajoomla
1.0.12
joomlajoomla
1.0.13
joomlajoomla
1.03
joomlajoomla
1.5
joomlajoomla
1.5.0_beta:_beta
joomlajoomla
1.5.0_beta1:_beta1
joomlajoomla
1.5.0_beta2:_beta2
joomlajoomla
1.5.0_rc1:_rc1
joomlajoomla
1.5.1
joomlajoomla
1.5.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.joomla.org/content/view/5180/1/
http://www.joomla.org/content/view/5180/1/1/1/#htaccess
http://www.openwall.com/lists/oss-security/2008/07/12/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/44206
http://www.joomla.org/content/view/5180/1/
http://www.joomla.org/content/view/5180/1/1/1/#htaccess
http://www.openwall.com/lists/oss-security/2008/07/12/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/44206