CVE-2013-5576: Input Validation
First published: Wed Oct 09 2013(Updated: )
administrator/components/com_media/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote authenticated users or remote attackers to bypass intended access restrictions and upload files with dangerous extensions via a filename with a trailing . (dot), as exploited in the wild in August 2013.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Joomla | =2.5.0 | |
| Joomla | =2.5.1 | |
| Joomla | =2.5.2 | |
| Joomla | =2.5.3 | |
| Joomla | =2.5.4 | |
| Joomla | =2.5.5 | |
| Joomla | =2.5.6 | |
| Joomla | =2.5.7 | |
| Joomla | =2.5.8 | |
| Joomla | =2.5.9 | |
| Joomla | =2.5.10 | |
| Joomla | =2.5.11 | |
| Joomla | =2.5.12 | |
| Joomla | =2.5.13 | |
| Joomla | =3.0.0 | |
| Joomla | =3.0.1 | |
| Joomla | =3.0.2 | |
| Joomla | =3.0.3 | |
| Joomla | =3.0.4 | |
| Joomla | =3.1.0 | |
| Joomla | =3.1.1 | |
| Joomla | =3.1.2 | |
| Joomla | =3.1.3 | |
| Joomla | =3.1.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://developer.joomla.org/security/563-20130801-core-unauthorised-uploads.html
- http://joomlacode.org/gf/project/joomla/tracker/?action=TrackerItemEdit&tracker_item_id=31626
- http://seclists.org/oss-sec/2013/q3/484
- http://seclists.org/oss-sec/2013/q3/486
- http://www.cso.com.au/article/523528/joomla_patches_file_manager_vulnerability_responsible_hijacked_websites/
- http://www.exploit-db.com/exploits/27610
- http://www.kb.cert.org/vuls/id/639620
- https://github.com/joomla/joomla-cms/commit/1ed07e257a2c0794ba19e864f7c5101e7e8c41d2
- https://github.com/joomla/joomla-cms/commit/fa5645208eefd70f521cd2e4d53d5378622133d8
Frequently Asked Questions
What is the severity of CVE-2013-5576?
CVE-2013-5576 is classified as a high severity vulnerability due to its potential for file upload exploits.
How do I fix CVE-2013-5576?
To fix CVE-2013-5576, upgrade Joomla! to version 2.5.14 or 3.1.5 or later.
What systems are affected by CVE-2013-5576?
CVE-2013-5576 affects Joomla! versions 2.5.x before 2.5.14 and 3.x before 3.1.5.
What type of attack does CVE-2013-5576 allow?
CVE-2013-5576 allows remote authenticated users or attackers to bypass access restrictions and upload files with malicious extensions.
Can CVE-2013-5576 lead to a website compromise?
Yes, exploiting CVE-2013-5576 can lead to unauthorized file uploads, potentially compromising the website.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/remedy
- agent/references
- agent/last-modified-date
- agent/author
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/joomla
- canonical/joomla
- version/joomla/2.5.0
- version/joomla/2.5.1
- version/joomla/2.5.2
- version/joomla/2.5.3
- version/joomla/2.5.4
- version/joomla/2.5.5
- version/joomla/2.5.6
- version/joomla/2.5.7
- version/joomla/2.5.8
- version/joomla/2.5.9
- version/joomla/2.5.10
- version/joomla/2.5.11
- version/joomla/2.5.12
- version/joomla/2.5.13
- version/joomla/3.0.0
- version/joomla/3.0.1
- version/joomla/3.0.2
- version/joomla/3.0.3
- version/joomla/3.0.4
- version/joomla/3.1.0
- version/joomla/3.1.1
- version/joomla/3.1.2
- version/joomla/3.1.3
- version/joomla/3.1.4