CVE-2010-1434

7.5HIGH

Key Information

Vendor: Joomla
Status: Joomla
Vendor: CVE Published:; 21 June 2021

Summary

Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching further attacks. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.

Affected Version(s)

Joomla = Joomla core from 1.5.0 up to and including 1.5.15

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Jun 21, 2021
Vulnerability Reserved.
Apr 15, 2010

Collectors

NVD DatabaseMitre Database