FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-25 11:22:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
624b45c0-c7f3-11e6-ae1b-002590263bf5	Joomla! -- multiple vulnerabilities The JSST and the Joomla! Security Center report: [20161201] - Core - Elevated Privileges Incorrect use of unfiltered data stored to the session on a form validation failure allows for existing user accounts to be modified; to include resetting their username, password, and user group assignments. [20161202] - Core - Shell Upload Inadequate filesystem checks allowed files with alternative PHP file extensions to be uploaded. [20161203] - Core - Information Disclosure Inadequate ACL checks in the Beez3 com_content article layout override enables a user to view restricted content. Discovery 2016-12-06 Entry 2016-12-22 joomla3 ge 1.6.0 lt 3.6.5 CVE-2016-9836 CVE-2016-9837 CVE-2016-9838 https://developer.joomla.org/security-centre/664-20161201-core-elevated-privileges.html https://developer.joomla.org/security-centre/665-20161202-core-shell-upload.html https://developer.joomla.org/security-centre/666-20161203-core-information-disclosure.html https://www.joomla.org/announcements/release-news/5693-joomla-3-6-5-released.html

VuXML ID

Description

624b45c0-c7f3-11e6-ae1b-002590263bf5

Joomla! -- multiple vulnerabilities

The JSST and the Joomla! Security Center report:

[20161201] - Core - Elevated Privileges

Incorrect use of unfiltered data stored to the session on a form validation failure allows for existing user accounts to be modified; to include resetting their username, password, and user group assignments.

[20161202] - Core - Shell Upload

Inadequate filesystem checks allowed files with alternative PHP file extensions to be uploaded.

[20161203] - Core - Information Disclosure

Inadequate ACL checks in the Beez3 com_content article layout override enables a user to view restricted content.

Discovery 2016-12-06
Entry 2016-12-22
joomla3

ge 1.6.0 lt 3.6.5

CVE-2016-9836
CVE-2016-9837
CVE-2016-9838
https://developer.joomla.org/security-centre/664-20161201-core-elevated-privileges.html
https://developer.joomla.org/security-centre/665-20161202-core-shell-upload.html
https://developer.joomla.org/security-centre/666-20161203-core-information-disclosure.html
https://www.joomla.org/announcements/release-news/5693-joomla-3-6-5-released.html