Lucene search
HistoryAug 10, 2012 - 10:34 a.m.
CVE-2012-4235
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.004
Percentile
72.4%
The RSGallery2 (com_rsgallery2) component before 3.2.0 for Joomla! 2.5.x does not place index.html files in image directories, which allows remote attackers to list image filenames via a request for a directory URI.
Affected configurations
Node
rsgallery2com_rsgallery2Range≤3.1.0
ORrsgallery2com_rsgallery2Match1.9.0-4alpha
ORrsgallery2com_rsgallery2Match1.9.4alpha
ORrsgallery2com_rsgallery2Match1.9.5alpha
ORrsgallery2com_rsgallery2Match1.10.1alpha
ORrsgallery2com_rsgallery2Match1.10.2alpha
ORrsgallery2com_rsgallery2Match1.10.5alpha
ORrsgallery2com_rsgallery2Match1.10.6alpha
ORrsgallery2com_rsgallery2Match1.10.7alpha
ORrsgallery2com_rsgallery2Match1.10.8alpha
ORrsgallery2com_rsgallery2Match1.10.9alpha
ORrsgallery2com_rsgallery2Match1.10.10alpha
ORrsgallery2com_rsgallery2Match1.10.11alpha
ORrsgallery2com_rsgallery2Match1.10.13alpha
ORrsgallery2com_rsgallery2Match1.10.14alpha
ORrsgallery2com_rsgallery2Match1.11.0alpha
ORrsgallery2com_rsgallery2Match1.11.1alpha
ORrsgallery2com_rsgallery2Match1.11.2alpha
ORrsgallery2com_rsgallery2Match1.11.3alpha
ORrsgallery2com_rsgallery2Match1.11.4alpha
ORrsgallery2com_rsgallery2Match1.11.5alpha
ORrsgallery2com_rsgallery2Match1.11.6alpha
ORrsgallery2com_rsgallery2Match1.11.7alpha
ORrsgallery2com_rsgallery2Match1.11.8alpha
ORrsgallery2com_rsgallery2Match1.11.10alpha
ORrsgallery2com_rsgallery2Match1.11.11alpha
ORrsgallery2com_rsgallery2Match1.12.0alpha
ORrsgallery2com_rsgallery2Match1.12.1alpha
ORrsgallery2com_rsgallery2Match1.12.2alpha
ORrsgallery2com_rsgallery2Match1.13.0alpha
ORrsgallery2com_rsgallery2Match1.13.1alpha
ORrsgallery2com_rsgallery2Match1.14.0alpha
ORrsgallery2com_rsgallery2Match1.14.1alpha
ORrsgallery2com_rsgallery2Match2.1.0beta
ORrsgallery2com_rsgallery2Match2.1.1
ORrsgallery2com_rsgallery2Match3.0rc1
ORrsgallery2com_rsgallery2Match3.0.1
joomlajoomla\!Match2.5.0
ORjoomlajoomla\!Match2.5.1
ORjoomlajoomla\!Match2.5.2
ORjoomlajoomla\!Match2.5.3
ORjoomlajoomla\!Match2.5.4
ORjoomlajoomla\!Match2.5.5
ORjoomlajoomla\!Match2.5.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rsgallery2 | com_rsgallery2 | * | cpe:2.3:a:rsgallery2:com_rsgallery2:*:*:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.9.0-4 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.9.0-4:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.9.4 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.9.4:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.9.5 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.9.5:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.10.1 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.10.1:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.10.2 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.10.2:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.10.5 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.10.5:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.10.6 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.10.6:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.10.7 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.10.7:alpha:*:*:*:*:*:* |
| rsgallery2 | com_rsgallery2 | 1.10.8 | cpe:2.3:a:rsgallery2:com_rsgallery2:1.10.8:alpha:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2012-08-10 10:34:00
cve
cve
CVE-2012-4235
2012-08-10 10:34:48
cvelist
cvelist
CVE-2012-4235
2012-08-10 10:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.004
Percentile
72.4%
Related for NVD:CVE-2012-4235