CVE-2009-3946 Information

Description

Joomla! before 1.5.15 allows remote attackers to read an extension’s XML file and thereby obtain the extension’s version number via a direct request.

Reference

http://developer.joomla.org/security/news/306-20091103-core-xml-file-read-issue.html http://secunia.com/advisories/37262 http://www.osvdb.org/59800 https://exchange.xforce.ibmcloud.com/vulnerabilities/54160