Intrusion PreventionJoomla!.Jtag.Members.Directory.Arbitrary.File.Download
Description
This indicates an attack attempt to exploit an Information Disclosure Vulnerability in Joomla! Jtag.
An unauthenticated remote attacker could exploit this vulnerability by handling a file download request on a vulnerable system. Successful exploitation could result in disclosure of information which could be used to further compromise the target system.
Affected Products
Joomla! Jtag version 5.3.7
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-11-22 | 15.729 | Name:Joomla. Component. Jtag. Members. Directory. Arbitrary. File. Download:Joomla!. Jtag. Members. Directory. Arbitrary. File. Download |
| 2019-10-25 | 14.711 | Default_action:pass:drop |
| 2019-06-21 | 14.637 |
References
43913| ID | 48065 |
| Created | Jun 21, 2019 |
| Updated | Sep 24, 2020 |
| Risk |
|
| CVE ID | CVE-2018-6008 |
| Exploit Prediction Score | 37.68% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux, BSD, Solaris, MacOS |
| Affected App | PHP_app |