MidnightBSD

Advisories for christianwebministries

CVE-2018-7316 HIGH

Arbitrary File Upload exists in the Proclaim 9.1.1 component for Joomla! via a mediafileform action.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-434,

Products Affected

Vendor Product Version
christianwebministries proclaim 9.1.1
CVE-2018-7317 MEDIUM

Backup Download exists in the Proclaim 9.1.1 component for Joomla! via a direct request for a .sql file under backup/.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
christianwebministries proclaim 9.1.1