Improper input validation in Joomla Joomla\!
CVE-2015-8562
Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.929 (99.8th percentile) — read the EPSS interpretation.
Affected products
- Joomla Joomla\! — versions 1.5.0, 1.5.1, 1.5.2
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
- VoidSec/Joomla_CVE-2015-8562
- ZaleHack/joomla_rce_CVE-2015-8562
- paralelo14/CVE-2015-8562
- RobinHoutevelts/Joomla-CVE-2015-8562-PHP-POC
- Caihuar/Joomla-cve-2015-8562
- lorenzodegiorgi/setup-cve-2015-8562
- guanjivip/CVE-2015-8562
- xnorkl/Joomla_Payload
- thejackerz/scanner-exploit-joomla-CVE-2015-8562
- atcasanova/cve-2015-8562-exploit
References
- 39033 (Exploit, exploit, x_refsource_EXPLOIT-DB)
- 20151231 Joomla 1.5.x to 3.4.5 Object Injection Exploit (golang) (mailing-list, x_refsource_BUGTRAQ)
- 38977 (Exploit, exploit, x_refsource_EXPLOIT-DB)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (Exploit, x_refsource_MISC)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- 79195 (vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (Exploit, x_refsource_MISC)
Frequently asked questions
- What is CVE-2015-8562?
- CVE-2015-8562 is a vulnerability in Joomla Joomla\!, classified under Improper Input Validation. Published 2015-12-16.
- Is CVE-2015-8562 known to be exploited?
- 41 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.