Project: Joomla! SubProject: plg_xstandard Severity: High Versions: 1.5.8 and all previous 1.5 releases Exploit type: Directory Traversal Reported Date: 2009-January-7 Fixed Date: 2009-January-9 Description A crafted request can cause disclosure of the directory structure on the server (including any directory that php has access to). Affected Installs All 1.5.x installs prior to and including 1.5.8 are affected. Solution Upgrade to latest Joomla! version (1.5.9 or newer).
Original post:
[20090102] – Core – plg_xstandard Directory Traversal
Project: Joomla! SubProject: framework Severity: Low Versions: 1.5.8 and all previous 1.5 releases Exploit type: Session Hijacking/ Reported Date: 2008-November-20 Fixed Date: 2009-January-9 Description When running a site under SSL ONLY (the entire site is forced to be under ssl), Joomla! does not set the SSL flag on the cookie. This can allow someone monitoring the network to find the cookie related to the session. Please note that all data is still transferred securely. Affected Installs 1.5.8 and lower installs which are run with SSL only (no non-ssl access).
See more here:
[20090101] – Core – JSession SSL Session Disclosure