CVE-2009-1280

Published Apr 9, 2009

Last updated 7 years ago

Overview

Description: Multiple cross-site request forgery (CSRF) vulnerabilities in the com_media component for Joomla! 1.5.x through 1.5.9 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-352

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2017D307-89B3-4D94-A266-C7D8D45960A6"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.0:beta:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D548B3C9-483F-492C-A6BB-694B7217FEE8"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9813E813-2983-4471-9E56-6F254810A66B"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4F4F9E7-BA44-4235-A246-DB6C432C3873"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "495BD724-45BE-4214-B120-3A83BD9AD11B"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CCDBF4D-A797-4828-A084-8C775FA94BDF"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB1B7CF2-B717-4F37-A923-0E188FF3C47F"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBA35EF1-1F8C-4AEA-89A0-3C1DD2DFBFE8"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3333C204-A022-4B53-B61F-3C5601F21FC0"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2752717-AA95-4398-8091-24FD5925C4F7"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7B3B3FB-E67D-4D9A-BE01-855FA2545772"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B29D3E39-7B43-4D19-B39F-2EB56E30F737"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F155C3B-AAF5-4393-A964-E655113D84DE"
          },
          {
            "criteria": "cpe:2.3:a:joomla:joomla:1.5.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1DA8EEE-F091-49D0-9F9D-4C83574B6A36"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References