{"id":459,"date":"2015-10-24T13:54:26","date_gmt":"2015-10-24T18:54:26","guid":{"rendered":"https:\/\/cert.pa\/?p=459"},"modified":"2015-10-26T14:05:39","modified_gmt":"2015-10-26T19:05:39","slug":"csirt-panama-aviso-2015-10-actualizaciones-de-seguridad-para-joomla","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=459","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2015-10- Actualizaciones de Seguridad para Joomla"},"content":{"rendered":"<p>CSIRT Panam\u00e1 Aviso 2015-10- Actualizaciones de Seguridad para Joomla<br \/>\nGravedad: Alta<br \/>\nFecha de publicaci\u00f3n: Octubre 23, 2015<br \/>\nFecha de modificaci\u00f3n: Octubre 23, 2015<br \/>\n\u00daltima revisi\u00f3n: Revisi\u00f3n A.<br \/>\nFuente: Joomla! Developer Network<\/p>\n<p>Sistemas Afectados<br \/>\nJoomla versiones del 3.2.0 al 3.4.4<\/p>\n<p style=\"text-align: justify;\">I. Descripci\u00f3n<br \/>\nEl manejador de contenido Joomla ha recibido tres actualizaciones de seguridad una de ellas de gravedad alta. Las versiones afectadas de Joomla carecen de un adecuado filtro de peticiones de datos, lo que permite la inyecci\u00f3n SQL. Para solventar la vulnerabilidad se debe actualizar a la versi\u00f3n 3.4.5.<\/p>\n<p>II. Impacto<br \/>\nComplejidad de Acceso: Media.<br \/>\nAutenticaci\u00f3n: No requerida para explotarla.<br \/>\nTipo de impacto: Compromiso total de la integridad del sistema +\u00a0Compromiso total de la confidencialidad del sistema + Compromiso total<br \/>\nde la disponibilidad del sistema.<\/p>\n<p>III. Referencia a soluciones, herramientas e informaci\u00f3n<br \/>\nhttp:\/\/developer.joomla.org\/security-centre\/628-20151001-core-sql-injection.html<br \/>\nhttp:\/\/developer.joomla.org\/security-centre\/629-20151002-core-acl-violations.html<br \/>\nhttp:\/\/developer.joomla.org\/security-centre\/630-20151003-core-acl-violations.html<\/p>\n<p>IV. Informaci\u00f3n de contacto<br \/>\nCSIRT PANAMA<br \/>\nComputer Security Incident Response Team Autoridad Nacional para la\u00a0Innovaci\u00f3n Gubernamental<br \/>\nE-Mail: info@cert.pa<br \/>\nPhone: +507 520-CERT (2378)<br \/>\nWeb: http:\/\/www.cert.pa<br \/>\nTwitter: @CSIRTPanama<br \/>\nFacebook: http:\/\/www.facebook.com\/CSIRTPanama<br \/>\nKey ID: 16F2B124<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CSIRT Panam\u00e1 Aviso 2015-10- Actualizaciones de Seguridad para Joomla Gravedad: Alta Fecha de publicaci\u00f3n: Octubre 23, 2015 Fecha de modificaci\u00f3n: Octubre 23, 2015 \u00daltima revisi\u00f3n: Revisi\u00f3n A. Fuente: Joomla! Developer Network Sistemas Afectados Joomla versiones&#8230;<\/p>\n","protected":false},"author":4,"featured_media":460,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[8,22],"class_list":["post-459","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-avisos","tag-joomla"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/459","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=459"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/459\/revisions"}],"predecessor-version":[{"id":461,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/459\/revisions\/461"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/460"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=459"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=459"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=459"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}