Login Sign Up

CVE-2010-1432

7.5 HIGH

📋 TL;DR

Joomla! Core 1.5.x has an information disclosure vulnerability where attackers can use negative values for limit and offset parameters to access sensitive data. This affects Joomla! 1.5.0 through 1.5.15. The exposed information could help attackers plan further attacks.

💻 Affected Systems

Products:
  • Joomla! Core
Versions: 1.5.0 through 1.5.15
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects Joomla! 1.5.x series; 1.6+ and other versions are not vulnerable.

📦 What is this software?

Joomla\! by Joomla

View all CVEs affecting Joomla\! →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers obtain sensitive configuration data, database credentials, or user information that enables complete system compromise through follow-up attacks.

🟠

Likely Case

Attackers access internal system information, configuration details, or partial data that assists in reconnaissance for more targeted attacks.

🟢

If Mitigated

Limited exposure of non-critical system information with no direct path to system compromise.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation involves sending HTTP requests with negative parameters; no authentication required.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.5.16

Vendor Advisory: https://developer.joomla.org/security-centre/311-20100423-core-negative-values-for-limit-and-offset.html

Restart Required: No

Instructions:

1. Backup your Joomla! installation and database. 2. Download Joomla! 1.5.16 or later. 3. Replace core files with patched versions. 4. Verify functionality after update.

🔧 Temporary Workarounds

Input Validation Filter

all

Add input validation to reject negative values for limit and offset parameters

Modify Joomla! core files to validate integer parameters as positive values

Web Application Firewall Rule

all

Block requests containing negative numeric parameters

Add WAF rule: deny requests with parameters containing negative numbers

🧯 If You Can't Patch

  • Implement strict input validation at application layer
  • Deploy web application firewall with rules blocking negative parameter values

🔍 How to Verify

Check if Vulnerable:

Test by sending HTTP requests with negative limit or offset parameters to Joomla! endpoints

Check Version:

Check Joomla! administration panel or view includes/version.php file

Verify Fix Applied:

Verify Joomla! version is 1.5.16 or later and test that negative parameters no longer return data

📡 Detection & Monitoring

Log Indicators:

  • HTTP requests with negative limit or offset parameters in access logs
  • Unusual parameter patterns in application logs

Network Indicators:

  • HTTP traffic containing negative numeric parameters
  • Repeated requests with varying negative values

SIEM Query:

source="web_logs" AND (parameter="limit:-*" OR parameter="offset:-*")

📊 Metadata

CVE ID: CVE-2010-1432
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-200
Published: June 21, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2010-1432, you might also want to check these:

CVE-2025-61481 10.0

MikroTik RouterOS and SwOS expose their WebFig management interface over unencrypted HTTP by default...

Same vulnerability type (CWE-200)
CVE-2025-53624 10.0

The Docusaurus gists plugin versions before 4.0.0 expose GitHub Personal Access Tokens in client-sid...

Same vulnerability type (CWE-200)
CVE-2023-49103 10.0

This vulnerability in ownCloud's graphapi app exposes PHP configuration details (phpinfo) via a thir...

Same vulnerability type (CWE-200)