CVE-2008-3228

EPSS 0.27%
Published 18.07.2008 16:41:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Joomla ≫ Joomla Version <= 1.5.3

Joomla ≫ Joomla Version1.0

Joomla ≫ Joomla Version1.0.0

Joomla ≫ Joomla Version1.0.1

Joomla ≫ Joomla Version1.0.2

Joomla ≫ Joomla Version1.0.3

Joomla ≫ Joomla Version1.0.4

Joomla ≫ Joomla Version1.0.5

Joomla ≫ Joomla Version1.0.6

Joomla ≫ Joomla Version1.0.7

Joomla ≫ Joomla Version1.0.8

Joomla ≫ Joomla Version1.0.9

Joomla ≫ Joomla Version1.0.10

Joomla ≫ Joomla Version1.0.11

Joomla ≫ Joomla Version1.0.12

Joomla ≫ Joomla Version1.0.13

Joomla ≫ Joomla Version1.03

Joomla ≫ Joomla Version1.5

Joomla ≫ Joomla Version1.5.0_beta

Joomla ≫ Joomla Version1.5.0_beta1

Joomla ≫ Joomla Version1.5.0_beta2

Joomla ≫ Joomla Version1.5.0_rc1

Joomla ≫ Joomla Version1.5.1

Joomla ≫ Joomla Version1.5.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.27%	0.506

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.joomla.org/content/view/5180/1/

http://www.openwall.com/lists/oss-security/2008/07/12/2

http://www.joomla.org/content/view/5180/1/1/1/#htaccess

https://exchange.xforce.ibmcloud.com/vulnerabilities/44206

https://nvd.nist.gov/vuln/detail/CVE-2008-3228

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-3228

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-3228

EUVD