CVE-2010-1435 - AskarLabs CVE Database

CVE-2010-1435

Vendor N/A

Product Joomla

Weakness CWE-863 · Incorrect authorization

Published June 21, 2021

Last update August 7, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the database through an already existing SQL injection vector. Joomla! Core versions 1.5.x ranging from 1.5.0 and up to and including 1.5.15 are vulnerable.

Key dates

02Disclosure timeline

June 21, 2021 CVE published

August 7, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2010-1435 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/863.html

Related vulnerabilities

04Related CVE

CVE-2025-69417 CVE-2025-52890 Incus vulnerable to antispoofing nftables firewall rule bypass on bridge networks with ACLs CVE-2026-33579 OpenClaw < 2026.3.28 - Privilege Escalation via Missing Caller Scope Validation in Device Pair Approval CVE-2023-3485 Insecure Default Authorization in Temporal Server CVE-2026-42434 OpenClaw 2026.4.5 < 2026.4.10 - Sandbox Escape via host Parameter Override in Exec Routing