[20120602] - Core - Information Disclosure

  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 2.5.4 and all earlier 2.5.x versions
  • Exploit type: Information Disclosure
  • Reported Date: 2012-May-1
  • Fixed Date: 2012-June-18


Inadequate filtering leads SQL error and information disclosure.

Affected Installs

Joomla! versions 2.5.4 and all earlier 2.5.x versions


Upgrade to version 2.5.5

Reported by Jakub Galczyk


The JSST at the Joomla! Security Center.

Source: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/K71HzujRDDs/471-20120602-core-information-disclosure.html