Joomla! FLEXIcontent Component Insecure Permissions and Command Injection

SECUNIA ADVISORY ID:
SA44007

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/44007/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=44007

RELEASE DATE:
2011-04-06

DESCRIPTION:
A weakness and a vulnerability have been reported in the FLEXIcontent
component for Joomla!, which can be exploited by malicious, local
users to manipulate certain data and disclose sensitive information
and by malicious people to compromise a vulnerable system.

1) The weakness is caused due to the component setting insecure
permissions (777) for the "cache" directory. This can be exploited to
e.g. modify, create, or delete files contained in this directory.

2) The vulnerability exists in the bundled version of phpThumb().

For more information:
SA39556

The weakness and the vulnerability are reported in versions prior to
1.5.

SOLUTION:
Update to version 1.5.

PROVIDED AND/OR DISCOVERED BY:
1) Reported by the vendor.

ORIGINAL ADVISORY:
http://www.flexicontent.org/home/item/192-flexicontent-154-is-finally-out.html

RECENT ARTICLE

RECENT POST