This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:joomla:joomla!:2.5.24
Detail
VendorJoomlaFirst view 2014-10-08
ProductJoomla!Last view2019-08-14
Version2.5.24TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:joomla:joomla!

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
52019-08-14CVE-2019-15028NetworkLowNone Requ...
42019-06-11CVE-2019-12764NetworkLowRequires ...
4.32019-05-20CVE-2019-11809NetworkMediumNone Requ...
7.52019-04-10CVE-2019-10945NetworkLowNone Requ...
4.32019-02-12CVE-2019-7744NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52019-02-12CVE-2019-7743NetworkLowNone Requ...
4.32019-02-12CVE-2019-7742NetworkMediumNone Requ...
4.32019-02-12CVE-2019-7741NetworkMediumNone Requ...
4.32019-02-12CVE-2019-7740NetworkMediumNone Requ...
4.32019-02-12CVE-2019-7739NetworkMediumNone Requ...
4.32019-01-16CVE-2019-6264NetworkMediumNone Requ...
3.52019-01-16CVE-2019-6263NetworkMediumRequires ...
3.52019-01-16CVE-2019-6262NetworkMediumRequires ...
4.32019-01-16CVE-2019-6261NetworkMediumNone Requ...
42018-10-09CVE-2018-17859NetworkLowRequires ...
6.82018-10-09CVE-2018-17858NetworkMediumNone Requ...
6.52018-10-09CVE-2018-17856NetworkLowRequires ...
6.52018-10-09CVE-2018-17855NetworkLowRequires ...
7.52018-08-28CVE-2018-15882NetworkLowNone Requ...
52018-08-28CVE-2018-15881NetworkLowNone Requ...
3.52018-08-28CVE-2018-15880NetworkMediumRequires ...
6.52018-06-26CVE-2018-12712NetworkLowRequires ...
4.32018-06-26CVE-2018-12711NetworkMediumNone Requ...
4.32018-05-22CVE-2018-6378NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
47% (21)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (5)CWE-20Improper Input Validation
6% (3)CWE-200Information Exposure
4% (2)CWE-434Unrestricted Upload of File with Dangerous Type
4% (2)CWE-284Access Control (Authorization) Issues
Hide | Show 11 More...
%idName
2% (1)CWE-362Race Condition
2% (1)CWE-352Cross-Site Request Forgery (CSRF)
2% (1)CWE-310Cryptographic Issues
2% (1)CWE-295Certificate Issues
2% (1)CWE-287Improper Authentication
2% (1)CWE-269Improper Privilege Management
2% (1)CWE-209Information Exposure Through an Error Message
2% (1)CWE-90Failure to Sanitize Data into LDAP Queries ('LDAP Injection')
2% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
2% (1)CWE-74Failure to Sanitize Data into a Different Plane ('Injection')
2% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

SAINT Exploits

DescriptionLink
Joomla User-Agent PHP object injectionMore info here

ExploitDB Exploits

idDescription
35033Joomla Akeeba Kickstart Unserialize Remote Code Execution

Snort® IPS/IDS

DateDescription
2018-09-27Joomla PostInstall Message SQL injection attempt
RuleID : 47656 - Type : SERVER-WEBAPP - Revision : 3
2018-09-27Joomla PostInstall Message SQL injection attempt
RuleID : 47655 - Type : SERVER-WEBAPP - Revision : 3
2018-09-05Joomla Core com_fields cross site scripting attempt
RuleID : 47421 - Type : SERVER-WEBAPP - Revision : 2
2018-05-23Akeeba Kickstart cross site request forgery attempt
RuleID : 46341-community - Type : SERVER-WEBAPP - Revision : 3
2018-05-17Akeeba Kickstart cross site request forgery attempt
RuleID : 46341 - Type : SERVER-WEBAPP - Revision : 3
Hide | Show 9 More...
DateDescription
2018-05-23Akeeba Kickstart restoration.php reconnaissance attempt
RuleID : 46340-community - Type : SERVER-WEBAPP - Revision : 3
2018-05-17Akeeba Kickstart restoration.php reconnaissance attempt
RuleID : 46340 - Type : SERVER-WEBAPP - Revision : 3
2018-05-23Joomla restore.php PHP object injection attempt
RuleID : 46315-community - Type : SERVER-WEBAPP - Revision : 3
2018-05-15Joomla restore.php PHP object injection attempt
RuleID : 46315 - Type : SERVER-WEBAPP - Revision : 3
2018-01-03Joomla LDAP authentication plugin information disclosure exploitation attempt
RuleID : 45039 - Type : SERVER-WEBAPP - Revision : 2
2018-01-03Joomla LDAP authentication plugin information disclosure exploitation attempt
RuleID : 45038 - Type : SERVER-WEBAPP - Revision : 2
2018-01-03Joomla LDAP authentication plugin information disclosure exploitation attempt
RuleID : 45037 - Type : SERVER-WEBAPP - Revision : 2
2016-03-14Joomla JDatabaseDriverMysqli unserialize code execution attempt
RuleID : 37078 - Type : SERVER-WEBAPP - Revision : 4
2016-03-14Joomla JDatabaseDriverMysqli unserialize code execution attempt
RuleID : 37077 - Type : SERVER-WEBAPP - Revision : 4

Nessus® Vulnerability Scanner

idDescription
2019-01-15Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_392.nasl - Type : ACT_GATHER_INFO
2018-10-12Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_3813.nasl - Type : ACT_GATHER_INFO
2018-09-17Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_bf2b9c56b93e11e8b2a8a4badb296695.nasl - Type : ACT_GATHER_INFO
2018-08-28Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_3812.nasl - Type : ACT_GATHER_INFO
2018-07-13Name : The remote web server contains a PHP application that is affected by a file i...
File : joomla_389.nasl - Type : ACT_GATHER_INFO
Hide | Show 16 More...
idDescription
2018-07-13Name : The remote web server contains a PHP application that is affected by a XSS vu...
File : joomla_389b.nasl - Type : ACT_GATHER_INFO
2018-05-31Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_388.nasl - Type : ACT_GATHER_INFO
2018-02-06Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_384.nasl - Type : ACT_GATHER_INFO
2017-11-09Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_382.nasl - Type : ACT_GATHER_INFO
2017-09-21Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_380.nasl - Type : ACT_GATHER_INFO
2017-07-27Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_374.nasl - Type : ACT_GATHER_INFO
2017-07-05Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_373.nasl - Type : ACT_GATHER_INFO
2017-04-26Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_370.nasl - Type : ACT_GATHER_INFO
2016-01-29Name : The remote web server contains a PHP application that is affected by a remote...
File : joomla_object_injection.nasl - Type : ACT_ATTACK
2016-01-06Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_347.nasl - Type : ACT_GATHER_INFO
2015-12-18Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_a9f60ce8a4e011e5b86414dae9d210b8.nasl - Type : ACT_GATHER_INFO
2015-12-16Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_346.nasl - Type : ACT_GATHER_INFO
2015-10-26Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_beb3d5fc7ac511e5b35a002590263bf5.nasl - Type : ACT_GATHER_INFO
2015-10-26Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_cec4d01a7ac511e5b35a002590263bf5.nasl - Type : ACT_GATHER_INFO
2014-10-08Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_335.nasl - Type : ACT_GATHER_INFO
2014-09-25Name : The remote web server contains a PHP application that is affected by multiple...
File : joomla_334.nasl - Type : ACT_GATHER_INFO