Text only | Text with Images

Charlottezweb

General Conversation => Script Chat => Topic started by: Jason on June 19, 2012, 08:37:48 AM

Title: Joomla Security Notice :: June 19, 2012
Post by: Jason on June 19, 2012, 08:37:48 AM
This was emailed out by Joomla Security today:

http://developer.joomla.org/security/news

Quote
Joomla! Security News
________________________________________
[20120601] - Core - Privilege Escalation
Posted: 19 Jun 2012 12:21 AM PDT
?   Project: Joomla!
?   SubProject: All
?   Severity: Medium High
?   Versions: 2.5.4 and all earlier 2.5.x versions
?   Exploit type: Privilege Escalation
?   Reported Date: 2012-April-29
?   Fixed Date: 2012-June-18
Description
Inadequate checking leads to possible user privilege escalation.
Affected Installs
Joomla! versions 2.5.4 and all earlier 2.5.x versions
Solution
Upgrade to version 2.5.5
Reported by Nils Rückmann


[20120602] - Core - Information Disclosure
Posted: 19 Jun 2012 12:21 AM PDT
?   Project: Joomla!
?   SubProject: All
?   Severity: Low
?   Versions: 2.5.4 and all earlier 2.5.x versions
?   Exploit type: Information Disclosure
?   Reported Date: 2012-May-1
?   Fixed Date: 2012-June-18
Description
Inadequate filtering leads SQL error and information disclosure.
Affected Installs
Joomla! versions 2.5.4 and all earlier 2.5.x versions
Solution
Upgrade to version 2.5.5
Reported by Jakub Galczyk
Text only | Text with Images