Vigil@nce - Joomla: information disclosure
November 2011 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use three vulnerabilities of Joomla, in order to
obtain information.
Severity: 2/4
Creation date: 18/10/2011
IMPACTED PRODUCTS
– Joomla!
DESCRIPTION OF THE VULNERABILITY
Three vulnerabilities were announced in Joomla.
Some data are not correctly encrypted, so an attacker can obtain
information. [severity:2/4; 20111001, CVE-2011-3629]
An attacker can generate an error, in order to obtain information.
[severity:2/4; 20111002]
Some data are not correctly encrypted, so an attacker can obtain
information. [severity:2/4; 20111003]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Joomla-information-disclosure-11070