Intrusion Prevention

Joomla.Proclaim.Backup.File.Disclosure

Description

This indicates an attack attempt to exploit an Information Disclosure vulnerability in Joomla!.
The vulnerability is due to an error in Proclaim component when handling SQL files. A remote attacker may be able to download arbitrary backup file, via a crafted HTTP request.

Affected Products

Joomla! component Proclaim 9.1.1

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Currently we unaware of any vendor supplied patch for this issue.

CVE References

CVE-2018-7317