CVE-2008-3228 – joomla/joomla-platform

Package

Manager: composer
Name: joomla/joomla-platform
Vulnerable Version: >=0 <1.5.4

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:P/RL:U/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

EPSS: 0.0279 pctl0.8554

Details

Joomla! doesn't configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors.

Metadata

Created: 2022-05-01T23:57:57Z
Modified: 2025-04-09T20:50:34Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mxr8-pcpg-m23j/GHSA-mxr8-pcpg-m23j.json
CWE IDs: []
Alternative ID: GHSA-mxr8-pcpg-m23j
Finding: F027
Auto approve: 1