Back to search
CVE-2017-18345
Published: Aug 26, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
The Joomanager component through 2.0.0 for Joomla! has an arbitrary file download issue, resulting in exposing the credentials of the database via an index.php?option=com_joomanager&controller=details&task=download&path=configuration.php request.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://vel.joomla.org/vel-blog/2020-joomanager-2-0-0-other
x_refsource_MISC
44252
exploit
x_refsource_EXPLOIT-DB
https://cxsecurity.com/issue/WLB-2018030054
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now