FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Joomla! -- Core - Remote File Execution/Denial of Service vulnerabilities

Affected packages
joomla3 < 3.2.6
3.3.0 <= joomla3 < 3.3.5
2.5.4 <= joomla2 < 2.5.26

Details

VuXML ID cec4d01a-7ac5-11e5-b35a-002590263bf5
Discovery 2014-09-30
Entry 2015-10-25

The JSST and the Joomla! Security Center report:

[20140903] - Core - Remote File Inclusion

Inadequate checking allowed the potential for remote files to be executed.

[20140904] - Core - Denial of Service

Inadequate checking allowed the potential for a denial of service attack.

References

CVE Name CVE-2014-7228
CVE Name CVE-2014-7229
URL http://developer.joomla.org/security-centre/595-20140903-core-remote-file-inclusion.html
URL http://developer.joomla.org/security-centre/596-20140904-core-denial-of-service.html
URL https://www.joomla.org/announcements/release-news/5566-joomla-2-5-26-released.html
URL https://www.joomla.org/announcements/release-news/5567-joomla-3-3-5-released.html