{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T15:13:36.365","vulnerabilities":[{"cve":{"id":"CVE-2010-1435","sourceIdentifier":"secalert@redhat.com","published":"2021-06-21T23:15:09.937","lastModified":"2024-11-21T01:14:24.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable."},{"lang":"es","value":"Joomla! Core es propenso a una vulnerabilidad de omisión de seguridad. La explotación de este problema puede permitir a unos atacantes llevar a cabo acciones que de otra manera estarían restringidas y posteriormente recuperar tokens de restablecimiento de contraseña de la base de datos mediante un vector de inyección SQL ya existente. Joomla! Core versiones 1.5.x que van desde la 1.5.0 hasta la 1.5.15 e incluyéndola son vulnerables"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:joomla:joomla\\!:*:*:*:*:*:*:*:*","versionStartIncluding":"1.5.0","versionEndIncluding":"1.5.15","matchCriteriaId":"E6FB5F3E-58F9-4702-927A-0716AB6EC673"}]}]}],"references":[{"url":"https://developer.joomla.org/security-centre/308-20100423-core-password-reset-tokens.html","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"https://www.acunetix.com/vulnerabilities/web/joomla-core-1-5-x-security-bypass-1-5-0-1-5-15/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://developer.joomla.org/security-centre/308-20100423-core-password-reset-tokens.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.acunetix.com/vulnerabilities/web/joomla-core-1-5-x-security-bypass-1-5-0-1-5-15/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}