[20111003] - Core - Information Disclosure

  • Project: Joomla!
  • SubProject: All
  • Severity: Moderate
  • Versions: 1.5.23 and earlier
  • Exploit type: Information Disclosure
  • Reported Date: 2011-September-09
  • Fixed Date: 2011-October-17


Weak encryption causes potential information disclosure.

Affected Installs

Joomla! version 1.5.23 and earlier


Upgrade to the latest Joomla! version (1.5.24 or later)

Reported by Jeff Channell


The JSST at the Joomla! Security Center.

Source: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/Qzmq6A_Uzk4/372-20111003-core-information-disclosure.html